### 简要描述:
之八
### 详细说明:
某通用型建站系统SQL注射之八。
源码:XYCMS管理咨询公司建站系统 v4.2
地址:http://down.chinaz.com/soft/29472.htm
注入点:Showdxal.asp?id=
可搜索到实例:
[<img src="https://images.seebug.org/upload/201503/26103052ad34cafcf0c2af921dead5c5a22cfde3.png" alt="QQ图片20150326102621.png" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201503/26103052ad34cafcf0c2af921dead5c5a22cfde3.png)
实例如下:
http://www.laco-hr.com/showdxal.asp?id=66
http://www.pundun.cn/showdxal.asp?id=66
http://www.szcxl.com/showdxal.asp?id=63
http://www.jshbls.com/showdxal.asp?id=19
http://www.xmpangu.com/showdxal.asp?id=74
### 漏洞证明:
实例+证明:
http://www.laco-hr.com/showdxal.asp?id=66
http://www.pundun.cn/showdxal.asp?id=66
http://www.szcxl.com/showdxal.asp?id=63
http://www.jshbls.com/showdxal.asp?id=19
http://www.xmpangu.com/showdxal.asp?id=74
[<img src="https://images.seebug.org/upload/201503/26103258c9247d1deddc6dba9ce687da6f3cf876.png" alt="QQ图片20150326103230.png" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201503/26103258c9247d1deddc6dba9ce687da6f3cf876.png)
京公网安备 11010502034610号
暂无评论