某在线培训系统Base64编码后通用SQL盲注漏洞

简要描述： RT 详细说明： 接上一个洞： WooYun: 某在线培训系统通用SQL注入漏洞 厂商：上海天柏信息科技有限公司 http://www.timber2005.com/Productsy.html （客户案例及试用） 天柏在线培训系统（网校版） 漏洞地址： http://px2.timber2005.com/WebPage/kccontent.aspx?tid=NDAyMA==&cid=Mjk= 参数cid存在注入 tid和cid都采用了base64的编码，因此提交的时候需要对参数进行编码 提交： 29 and 1=1 编码后： MjkgYW5kIDE9MQ== 页面正常...

Webyonet 4.0 - Remote (urunler.aspx) SQL Injection Vulnerability

Exploit for php platform in category web applications ================================================================ Webyonet 4.0 - Remote urunler.aspx SQL Injection Vulnerability ================================================================...

Quicksite Pro - Remote SQL Injection Vulnerability

Exploit for php platform in category web applications ================================================== Quicksite Pro - Remote SQL Injection Vulnerability ================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\...

Quicksite Pro SQL Injection

=============================================== Quicksite Pro - Remote SQL Injection Vulnerability =============================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /...

Microsoft SQL Server Heap Overflow Exploit

% // ksOSe 12/17/2008 // Microsoft SQL Server "spreplwritetovarbin" Heap Overflow // Tested on Win2k SP4 with MSSQL 2000on one box only!. // Shellcode is a slightly modified metasploit reverse shellon 10.10.10.1 port 4445, // the change allows multiple shots : // // You need a valid SQL account,...

Microsoft SQL Server sp_replwritetovarbin() Heap Overflow Exploit (0day)

No description provided by source. html % // ksOSe 12/17/2008 // Microsoft SQL Server "spreplwritetovarbin" Heap Overflow // Tested on Win2k SP4 with MSSQL 2000on one box only!. // Shellcode is a slightly modified metasploit reverse shellon 10.10.10.1 port 4445, // the change allows multiple shot...

Microsoft SQL Server - 'sp_replwritetovarbin()' Heap Overflow

% // ksOSe 12/17/2008 // Microsoft SQL Server "spreplwritetovarbin" Heap Overflow // Tested on Win2k SP4 with MSSQL 2000on one box only!. // Shellcode is a slightly modified metasploit reverse shellon 10.10.10.1 port 4445, // the change allows multiple shots : // // You need a valid SQL account,...

Microsoft SQL Server - sp_replwritetovarbin() Heap Overflow

Microsoft SQL Server - spreplwritetovarbin Heap Overflow % // ksOSe 12/17/2008 // Microsoft SQL Server "spreplwritetovarbin" Heap Overflow // Tested on Win2k SP4 with MSSQL 2000on one box only!. // Shellcode is a slightly modified metasploit reverse shellon 10.10.10.1 port 4445, // the change...