Lizard Cart Multiple SQL Injection Exploit[网络技术]
本文“Lizard Cart Multiple SQL Injection Exploit[网络技术]”是由七道奇为您精心收集,来源于网络转载,文章版权归文章作者所有,本站不对其观点以及内容做任何评价,请读者自行判断,以下是其具体内容:
# Title: Lizard Cart Multiple SQL Injection Exploit
# EDB-ID: 10560
# CVE-ID: ()
# OSVDB-ID: ()
# Author: cr4wl3r
# Published: 2009-12-19
# Verified: no
# Download Exploit Code
# Download N/A
view sourceprint?################################################################################
## Exploit Title: Lizard Cart Multiple SQL Injection Exploit ##
## Date: 20-12-2009 ##
## Author: cr4wl3r ##
## Software Link: http://sourceforge.net/projects/lizardcart/ ##
## Version: N/A ##
## Tested on: GNU/LINUX ##
################################################################################
~ Code [detail.php]
$dbResult = mysql_query("select * from products where id='$id'");
~ PoC
[lizardcart_path]/detail.php?id=[SQL]
~ Code [pages.php]
$dbResult = mysql_query("select * from pages where id='$id'");
~ PoC
[lizardcart_path]/pages.php?id=[SQL]
以上是“Lizard Cart Multiple SQL Injection Exploit[网络技术]”的内容,如果你对以上该文章内容感兴趣,你可以看看七道奇为您推荐以下文章:
本文地址: | 与您的QQ/BBS好友分享! |