软件培训php:PHP代码被报告为恶意软件(post.php virus)-边看边学

我一直在一个网站上工作localhost，并试图将其上传到一个免费的网络服务器，所以我可以得到一些测试人员，由于某种原因，我的代码被报告为恶意软件，并被我的防病毒软件阻止，这意味着除了ERR_CONNECTION_RESET之外，我在访问它时看不到任何东西。

LOGIN.php

<?php
include('cles/db.php');
if (db::maintenance()) {
  die('This site is currently going under maintenance, please check back again shortly.');
}
if (isset($_POST['submit'])) {
  $username = $_POST['username'];
  $pword = $_POST['pword'];
  if (db::query('SELECT username FROM users WHERE username=:username', array(':username'=>$username))) {
    if (pword_verify($pword, db::query('SELECT pword FROM users WHERE username=:username', array(':username'=>$username))[0]['pword'])) {
      echo "Logged in!";
      $cstrong = True;
      $token = bin2hex(openssl_random_pseudo_bytes(64, $cstrong));
      $user_id = db::query('SELECT id FROM users WHERE username=:username', array(':username'=>$username))[0]['id'];
      db::query('INSERT INTO login_tokens VALUES (NULL, :token, :user_id)', array(':token'=>sha1($token), ':user_id'=>$user_id));
      setcookie("SNID", $token, time() + 60 * 60 * 24 * 7, '/', NULL, NULL, TRUE);
      setcookie('SNID_', '1', time() + 60 + 60 * 24 * 3, '/', NULL, NULL, TRUE);
      header('Location: index.php');
    } else {
      echo "Incorrect pword";
    }
  } else {
    echo "User not registered!";
  }
}
?>
 <h1>Login to your account</h1>
<form action="login.php" method="post">
  <input type="text" name="username" value="" placeholder="Username"><p />
  <input type="pword" name="pword" value="" placeholder="Pword"><p />
  <input type="submit" name="submit" placeholder="Login"><p />
</form>

DB.php（我已将连接更改为虚假数据，并在将其上传到主机时将其更改为正确的数据。）

<?php
cl db {
  private static function connect () {
    $conn = new PDO('mysql:host=localhost;dbname=users;,cht=utf8', 'root', '');
    $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
    return $conn;
  }
  public static function query ($sql, $params = array()) {
    $statement = self::connect()->prepare($sql);
    $statement->execute($params);
    if (explode(' ', $sql)[0] == 'SELECT') {
     $result = $statement->fetchAll();
     return $result;
    }
  }
  public static function notify ($userid) {
    $notifications = db::query('SELECT forum_members.forum_id, notifications.user_id, notifications.post_id, notifications.forum_id, notifications.post_body, notifications.creation, notifications.type FROM forum_members, notifications WHERE (notifications.forum_id=forum_members.forum_id OR notifications.forum_id=0) AND notifications.user_id=forum_members.user_id ORDER BY notifications.post_id DESC');
    return $notifications;
  }
  public static function maintenance () {
    return false;
  }
}
 ?>

您使用哪种类型的地址进入网站?PHP 源不显示给浏览器,所以 PHP 不是问题。如果您使用主机名 (例如.....2cc.brad....net) 输入,那么为了初学者安全,它会自动被检测为“恶意软件”,如果您从 localhost / 127.0.0.1 访问它应该没问题,但是如果您从标记为恶意软件的主机访问它,则比 yep

本站系公益性非盈利分享网址，本文来自用户投稿，不代表边看边学立场，如若转载，请注明出处