phpmps某处漏洞导致官网沦陷

### 简要描述： phpmps某处漏洞导致官网沦陷 ### 详细说明： phpmps某处漏洞导致官网沦陷 ### 漏洞证明： phpmps某处漏洞导致官网沦陷 该处泄露了官网密码 [WooYun: phpmps通用SQL注入（demo测试成功）](http://www.wooyun.org/bugs/wooyun-2014-068055) admin/gxy123123 [<img src="https://images.seebug.org/upload/201501/0416163013662712bc573803e5ccd1866a5d10c5.jpg" alt="QQ截图20150104161539.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201501/0416163013662712bc573803e5ccd1866a5d10c5.jpg) 进入后台-首页flash处任意上传 [<img src="https://images.seebug.org/upload/201501/04162030c420d5e5095c74a674e3ba6dc60ae2a4.jpg" alt="QQ截图20150104161539.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201501/04162030c420d5e5095c74a674e3ba6dc60ae2a4.jpg) shell地址：http://www.phpmps.com/demo/data\com\thumb/20150104iaoydj.php 密码：cai [<img src="https://images.seebug.org/upload/201501/041621520c36ed88545f44d03c803f823ecd6f36.jpg" alt="1.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201501/041621520c36ed88545f44d03c803f823ecd6f36.jpg) [<img src="https://images.seebug.org/upload/201501/041622083165988bc6010cb11bc0d9e023f92338.jpg" alt="2.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201501/041622083165988bc6010cb11bc0d9e023f92338.jpg)