Hui-Bo Shopping Mall system V6. 0 injection vulnerability-vulnerability warning-the black bar safety net

2010-09-24T00:00:00
ID MYHACK58:62201027930
Type myhack58
Reporter 佚名
Modified 2010-09-24T00:00:00

Description

Hui-Bo Shopping Mall system V6. 0 without the stringent filtering, resulting inSQL injectionvulnerabilities.

Vulnerability analysis:product_inc. asp, checkSQL. asp

product_inc. asp:

Id = Trim(Request. QueryString("id"))

If Id="" then

Response. Write("<script language='javascript'>alert('the product does not exist!'); history. go(-1);</script>") Response. End

End If only the filter before and after the spaces after the file call checkSQL. asp universal anti-injection.

checkSQL. asp:

The first 6 lines:

Fy_Url=Request. ServerVariables("QUERY_STRING") this is not to say that large cattle were many years ago for this General purpose anti-implantation were studied. Directly below given the use of the process

The exploit: the

http://URL/product.asp?%69d=1 to throw into the injection tool ran directly to

Note: the 6.0 later joined the CNum function IsNumeric determine with the CLng conversion filter here injected