1/1页1 跳转到查看:858
发新话题 回复该主题

dvbbs asp版 0day

离线 sec120
头像

sec120

  • 组别:管理员
  • 性别:
  • 积分:53
  • 帖子:53
2008-08-27 17:04 | 只看楼主 树型| 收藏| 1#

dvbbs asp版 0day

作者:落叶粪飞

来源 马骏's blog

漏洞文件是Query.asp,漏洞代码:

Copy code................................................................................................
stable=Replace(Request("stable"),"'","")
...................................................................................................
If stable="" Or Len(stable)>10 Then stable=Dvbbs.NowUseBbs
.....................................................................................................
If Len(stable)>8 Then Dvbbs.AddErrCode(35)
........................................................................................................
Case 2
If Not Dvbbs.master Then SearchUserID =SearchUserID&" And signflag<2"
SqlColumn = SqlColumn & " From " & stable & " Where "&searchboard&" ParentID>0 And PostUserID="&SearchUserID&" Order By AnnounceID Desc"
Dvbbs.Stats = Dvbbs.Stats & template.Strings(8)
........................................................................................................
 

TOP

 
<<上一主题|下一主题>>
1/1页1 跳转到
发表新主题 回复该主题