DISCUZ all versions of COOKIE hijacking method+DEMO-vulnerability warning-the black bar safety net

DISCUZ and many forums are unable to perform session hijacking, because the session and IP binding, DISCUZ main session authentication mechanism is as follows: /inlude/common.inc.php //Section 1 3 6 verify the session important period is from the sessions table in the query the SID, which is an...