dvwa updated

dvwa/vulnerabilities/weak_id/source/high.php

@@ -0,0 +1,14 @@
+<?php
+
+$html = "";
+
+if ($_SERVER['REQUEST_METHOD'] == "POST") {
+	if (!isset ($_SESSION['last_session_id_high'])) {
+		$_SESSION['last_session_id_high'] = 0;
+	}
+	$_SESSION['last_session_id_high']++;
+	$cookie_value = md5($_SESSION['last_session_id_high']);
+	setcookie("dvwaSession", $cookie_value, time()+3600, "/vulnerabilities/weak_id/", $_SERVER['HTTP_HOST'], false, false);
+}
+
+?>

dvwa/vulnerabilities/weak_id/source/impossible.php

@@ -0,0 +1,9 @@
+<?php
+
+$html = "";
+
+if ($_SERVER['REQUEST_METHOD'] == "POST") {
+	$cookie_value = sha1(mt_rand() . time() . "Impossible");
+	setcookie("dvwaSession", $cookie_value, time()+3600, "/vulnerabilities/weak_id/", $_SERVER['HTTP_HOST'], true, true);
+}
+?>

dvwa/vulnerabilities/weak_id/source/low.php

@@ -0,0 +1,13 @@
+<?php
+
+$html = "";
+
+if ($_SERVER['REQUEST_METHOD'] == "POST") {
+	if (!isset ($_SESSION['last_session_id'])) {
+		$_SESSION['last_session_id'] = 0;
+	}
+	$_SESSION['last_session_id']++;
+	$cookie_value = $_SESSION['last_session_id'];
+	setcookie("dvwaSession", $cookie_value);
+}
+?>

dvwa/vulnerabilities/weak_id/source/medium.php

@@ -0,0 +1,9 @@
+<?php
+
+$html = "";
+
+if ($_SERVER['REQUEST_METHOD'] == "POST") {
+	$cookie_value = time();
+	setcookie("dvwaSession", $cookie_value);
+}
+?>