一次奇遇的渗透
<p>作者:y0umer</p><p> 打开网站发现</p>
<center><img height="234" alt="一次奇遇的渗透" width="561" border="1" src="https://img.jbzj.com/file_images/article/201206/201206101820152.png" /></center>
<p> 习惯的加了一个引号</p>
<center><img height="158" alt="一次奇遇的渗透" width="443" border="1" src="https://img.jbzj.com/file_images/article/201206/201206101820153.png" /></center>
<p> 确定是注入以后直接丢啊D了。(我懒)</p>
<center><img height="273" alt="一次奇遇的渗透" width="462" border="1" src="https://img.jbzj.com/file_images/article/201206/201206101820154.png" /></center>
<p> 这不悲剧了么,猜不出表段??</p>
<p> 扫扫目录看看。</p>
<center><img height="230" alt="一次奇遇的渗透" width="482" border="1" src="https://img.jbzj.com/file_images/article/201206/201206101820155.png" /></center>
<p> 发现del.asp打开看看。。</p>
<center><img height="164" alt="一次奇遇的渗透" width="458" border="1" src="https://img.jbzj.com/file_images/article/201206/201206101820156.png" /></center>
<p> 错误提示的是在查询表达式中"id="的错误 也就是查询错误。没有id的值。</p>
<p> 随便加一个del.asp?id=1</p>
<center><img height="173" alt="一次奇遇的渗透" width="475" border="1" src="https://img.jbzj.com/file_images/article/201206/201206101820157.png" /></center>
<p> 相当悲剧之。直接爆数据库路径了。。</p>
<p> 然后下载,打开找到admin表段。</p>
<center><img height="153" alt="一次奇遇的渗透" width="559" border="1" src="https://img.jbzj.com/file_images/article/201206/201206101820158.png" /></center>
<p> 其实就是admin</p>
<p> 找到后台登陆,相当悲剧</p>
<center><img height="243" alt="一次奇遇的渗透" width="505" border="1" src="https://img.jbzj.com/file_images/article/201206/201206101820159.png" /></center>
<p> 继续看数据库。。</p>
<center><img height="181" alt="一次奇遇的渗透" width="568" border="1" src="https://img.jbzj.com/file_images/article/201206/2012061018201510.png" /></center>
<p> 顺利登陆。</p>
<center><img height="228" alt="一次奇遇的渗透" width="498" border="1" src="https://img.jbzj.com/file_images/article/201206/2012061018201511.png" /></center>
<p> 看见了数据库备份。。</p>
<p> 瞬间瞬间激动了。。</p>
<p> 好吧,瞬间上传一个图片。。</p>
<p> 这里判断了文件头。</p>
<p> 我们需要合并......</p>
<center><img height="305" alt="一次奇遇的渗透" width="431" border="1" src="https://img.jbzj.com/file_images/article/201206/2012061018201512.png" /><br /></center><center><img height="176" alt="一次奇遇的渗透" width="490" border="1" src="https://img.jbzj.com/file_images/article/201206/2012061018201513.png" /></center>
<p> 合并成mjjw.png</p>
<center><img height="364" alt="一次奇遇的渗透" width="564" border="1" src="https://img.jbzj.com/file_images/article/201206/2012061018201514.png" /></center>
<p> 然后我们把上传mjjw.png</p>
<center><img height="186" alt="一次奇遇的渗透" width="492" border="1" src="https://img.jbzj.com/file_images/article/201206/2012061018201515.png" /></center>
<p> 然后备份</p>
<center><img height="131" alt="一次奇遇的渗透" width="526" border="1" src="https://img.jbzj.com/file_images/article/201206/2012061018201516.png" /></center>
<p> 访问下吧。</p>
<center><img height="198" alt="一次奇遇的渗透" width="490" border="1" src="https://img.jbzj.com/file_images/article/201206/2012061018201517.png" /></center>
<p> 然后我们用菜刀连接即可。。</p>
<center><img height="166" alt="一次奇遇的渗透" width="340" border="1" src="https://img.jbzj.com/file_images/article/201206/2012061018201518.png" /></center>
頁:
[1]