Shop7z v2.9 getpassword3.asp 文件 username 参数 SQL注入漏洞

No description provided by source...

shop7z sql注入漏洞

简要描述： shop7z sql注入漏洞 详细说明： getpassword3.asp if session"verifycode"request.Form"code" then response.write " 请输入正确的验证码，点击这里返回重试" response.end end if username=trimrequest.Form"username" passwordAnswer=trimrequest.Form"passwordAnswer" mail=trimrequest.Form"mail" if InStrpasswordAnswer,"'"0 or...