手机
IceBB
摘要:#Author:__GiReX__26/07/08#Homepage:#CMS:IceBBinput;$g){...$where_claus...

# Author: __GiReX__ 26/07/08

# Homepage: # CMS: IceBB input; $g)

{

...

$where_clauses[] = "{$k}='{$g}'"; qwhere = implode(' AND ',$where_clauses);

$total = $db->fetch_result("SELECT COUNT(*) as total FROM icebb_users{$this->qwhere}{$qextra}"); eatCookie('uid');

$login_key = $std->eatCookie('login_key');$icebb->hooks->hook('login_autoLogin', $uid, $login_key);$userq = $db->query("SELECT u.*,g.* FROM icebb_users AS u LEFT JOIN icebb_groups AS g ON u.user_group=g.gid WHERE u.id=".intval($uid)." AND u.login_key='{$login_key}' LIMIT 1");

$udata = $db->fetch_row($userq);if($db->get_num_rows($userq)>=1)

{

if($std->eatCookie('pass')==$udata['password'])

{

$sessid = md5(uniqid(microtime()));

$ip = $icebb->client_ip;

$user_agent = $std->clean_string($_SERVER['HTTP_USER_AGENT']);//$db->query("DELETE FROM icebb_session_data WHERE username='{$udata['username']}' OR ip='{$ip}'",1);175. $sessdata = $this->create_session($udata['username'],$udata['id'],false,true);

If admin has cookies enabled we can login and create/edit/delete posts and topics.############################### Perl Exploit Start #############################

#!/usr/bin/perl

# IceBB

【IceBB】相关文章:

处理360安全卫士失败错误代号80060004教程

15个保障服务器安全的方法

webshell下执行CMD的小技巧分享

360安全卫士总是阻止hosts更改该怎么办?

用Dos命令加锁 防止病毒格式化硬盘

Oracle Internet Directory 10.1.4 Remote Preauth DoS Exploit

Wysi Wiki Wyg 1.0 (index.php c) Local File Inclusion Vulnerability

添加SHIFT后门又一法 学习如何查找后门

网站域名被劫持、网站dns被劫持 域名跳转到别的网站的解决方法

一个让别人拨打你手机时提示空号的简单方法

精品推荐
分类导航