方维团购4.3版本注射 官方演示大量数据库泄露

简要描述： .......... 详细说明： ....... 漏洞证明： Target: http://t1.fanwe.net:93/t1/index.php?m=Ajax&a=gettypeattr&typeid=123 Host IP: 112.124.32.200 Web Server: IIS Powered-by: WAF/2.0 Powered-by: WAF/2.0 DB Server: MySQL Resp. Timeavg: 168 ms Current User: [email protected] Current DB: t1 Host Name:...