PicoPublisher v2.0远程SQL注射及修复
标题: PicoPublisher v2.0 Remote SQL injection作者: ZeTH www.2cto.com zeth/at/hacktheplan8/dot/com
开发者: Pico Software http://pico.no/
影响版本 : 2.0
售价: $29,00
:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
---- 介绍
PicoPublisher business software
PicoPublisher is a product from Pico Software
[管理你的网站]
PicoPublisher makes it easy to manage your website. With the built in
templates you can add columns, slideshows, tabs, boxes and videos
directly from the text editor.
CRM systems are often too expensive for small businesses. With
PicoPublisher you can manage your customers just as easy as your
website. And at the same place!
Create professional PDF invoices in seconds. Add products to the
database and insert products to the invoice directly. You will get
notifications when invoices are overdue.
---- 缺陷描述
存在页面 :
[+] page.php
[+] single.php
攻击方法: Remote SQL injection
POC :
[+] http://www.2cto.com /page.php?id=SQLi
[+] http://www.2cto.com /single.php?id=SQLi
Tables :
+-------------------+
| customers
| expenses
| gallery_category
| gallery_photos
| invoice_reminders
| invoices
| invoices_product
| menu_items
| menus
| notes
| options
| orders
| orders_product
| pages
| pico_comments
| pico_config
| pico_karma_voted
| posts
| product_list
| users
+-------------------+
---- 修复:
加强上述页面过滤 好啊,是吗,就是不要这样啊
暗恋是成功的哑剧,说出来就成了悲剧!
偶啥时才能熬出头啊.
楼主说的方法太牛了 就像黑客 不错不错,楼主是个绝对高手 看不懂啊
页:
[1]