2 matches found
安宁VMX反垃圾网关系统 /gateadmin/logins.php 参数F_admin SQL注入漏洞
0x01漏洞简介 安宁VMX反垃圾网关系统在/gateadmin/logins.php对参数Fadmin过滤不严格,导致出现POST注入漏洞。远程攻击者可以利用回显注入的方式执行SQL指令。 0x02漏洞证明 POST /gateadmin/logins.php HTTP/1.1 Host: ... Content-Length: 72 Cache-Control: max-age=0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,/;q=0.8 Origin: ... User-Agen...
Water-like moonlight Dating system 2 0 1 0 injection vulnerability-vulnerability warning-the black bar safety net
In the program getpass. asp this file. if request. QueryString"action"="rsend" then if request"uname"="" or request"uemail"="" then response. Write"scriptalert’please input login user name and registered e-mail address’;history. back;/script" end if if request"upass1"="" or request"upass2"="" the...