Search...

phpwind官网SQL注入一枚

2014-04-01T00:00:00

ID SSV:94434
Type seebug
Reporter Root
Modified 2014-04-01T00:00:00

Description

简要描述：

X-forwarded-for注入

详细说明：

X-forwarded-for注入

漏洞证明：

phpwind v9.0软件下载处X-forwarded-for注入 http://nt.phpwind.com/tj.php?id=915&verify=d7798b1c15fa25ac6a47afeb20107654&sign=pw9utfzip&type=click

JSON Vulners Source

Initial Source

{"sourceData": "", "status": "details", "description": "### \u7b80\u8981\u63cf\u8ff0\uff1a\n\nX-forwarded-for\u6ce8\u5165\n\n### \u8be6\u7ec6\u8bf4\u660e\uff1a\n\nX-forwarded-for\u6ce8\u5165 \n\n### \u6f0f\u6d1e\u8bc1\u660e\uff1a\n\nphpwind v9.0\u8f6f\u4ef6\u4e0b\u8f7d\u5904X-forwarded-for\u6ce8\u5165\nhttp://nt.phpwind.com/tj.php?id=915&verify=d7798b1c15fa25ac6a47afeb20107654&sign=pw9utfzip&type=click\n\n\n[<img src=\"https://images.seebug.org/upload/201404/011101441919de2e520b978a0421cdcd88e69ade.png\" alt=\"1.png\" width=\"600\" onerror=\"javascript:errimg(this);\">](https://images.seebug.org/upload/201404/011101441919de2e520b978a0421cdcd88e69ade.png)\n\n\n\n\n[<img src=\"https://images.seebug.org/upload/201404/01112337b43f8a7c4d4b04bd12b0e2d6754aeebd.png\" alt=\"2.png\" width=\"600\" onerror=\"javascript:errimg(this);\">](https://images.seebug.org/upload/201404/01112337b43f8a7c4d4b04bd12b0e2d6754aeebd.png)\n\n\n\n\n[<img src=\"https://images.seebug.org/upload/201404/011123521d3392958d53c074fdefac5f6ecf789d.png\" alt=\"3.png\" width=\"600\" onerror=\"javascript:errimg(this);\">](https://images.seebug.org/upload/201404/011123521d3392958d53c074fdefac5f6ecf789d.png)\n\n\n\n\n[<img src=\"https://images.seebug.org/upload/201404/01112400248b4ae250f649c4c811c107a88b2049.png\" alt=\"4.png\" width=\"600\" onerror=\"javascript:errimg(this);\">](https://images.seebug.org/upload/201404/01112400248b4ae250f649c4c811c107a88b2049.png)", "sourceHref": "", "reporter": "Root", "href": "https://www.seebug.org/vuldb/ssvid-94434", "type": "seebug", "viewCount": 4, "references": [], "lastseen": "2017-11-19T17:39:48", "published": "2014-04-01T00:00:00", "cvelist": [], "id": "SSV:94434", "enchantments_done": [], "modified": "2014-04-01T00:00:00", "title": "phpwind\u5b98\u7f51SQL\u6ce8\u5165\u4e00\u679a", "cvss": {"score": 0.0, "vector": "NONE"}, "bulletinFamily": "exploit", "enchantments": {"score": {"value": -0.1, "vector": "NONE", "modified": "2017-11-19T17:39:48", "rev": 2}, "dependencies": {"references": [], "modified": "2017-11-19T17:39:48", "rev": 2}, "vulnersScore": -0.1}}