Team:t00ls Author: Cond0r
if($_REQUEST){
if(get_magic_quotes_gpc()){
$_REQUEST = tao_strip($_REQUEST);
}else{
$_POST = tao_check($_POST);
$_GET = tao_check($_GET);
@extract($_POST);
@extract($_GET);
}
$_REQUEST=filter_xss($_REQUEST, ALLOWED_HTMLTAGS);
@extract($_REQUEST);
只做了簡(jiǎn)單的簡(jiǎn)單的過(guò)濾
漏洞文件
shops.php
$cid = addslashes($_GET['cid']);
$page = !($_GET['page'])?'1':intval($_GET['page']);
$page2=($page-1)*15;
$num1=15;
$sql="select * from 2taoke_shopcats where cid='$cid'";
$rs=$db->query($sql);
while($row=$db->fetch_array($rs)){
$catname=$row['catname'];
}
$sql="select * from 2taoke_shops where cid='$cid'";
$rs=$db->query($sql);
$num = mysql_num_rows($rs);
$sql="select * from 2taoke_shops where cid=$cid order by level desc limit $page2,$num1"; //整數(shù)型的注入���。。
$rs=$db->query($sql);
修復(fù):針對(duì)性過(guò)濾
域名注冊(cè)知識(shí)
虛擬主機(jī)知識(shí)
網(wǎng)站建設(shè)知識(shí)
網(wǎng)絡(luò)推廣知識(shí)
網(wǎng)絡(luò)營(yíng)銷知識(shí)
常見技術(shù)問(wèn)題
QQ空間
新浪微博
開心網(wǎng)
人人網(wǎng)
