Discuz 3.4 越权登陆漏洞分析

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