Another Power: 3.51 website management system vulnerabilities and solutions !!

Author: Science and Technology Creation freedom (real name: Kang Jian)
QQ: 330950407 MSN: htlaeh@hotmail.com

Today, another 3.51 website management system charge cracking vulnerability was discovered! Similar to the three vulnerabilities found previously, this vulnerability allows common registered members to read free and complete paid articles!

How to crack the vulnerability: register as a Website member, open a paid article, and prompt that you do not have the permission to read the full text. Click "print this article ", the "Print article" page will show you the full text of the paid article!
Solution:
Open the Article_Print.asp file in the home directory of the website. (back up the file before modification !)
Search:

<! -- # Include file = "Inc/conn. asp" --> <% Dim ArticleID, SQL, rs ArticleID = Clng (trim (request ("ArticleID "))) If ArticleId = "" then Response. Redirect ("Default. asp ") End if SQL = "select * from article where ArticleID =" & ArticleID &"" Set rs = Server. CreateObject ("ADODB. Recordset ") Rs. open SQL, conn, 1, 3 If rs. bof and rs. eof then Response. Write ("<p> no article found </p> ") Else %>

Replace:

<! -- # Include file = "Inc/syscode_article.asp" --> <% Const ChannelID = 2 Const ShowRunTime = "Yes" Dim tLayout, tUser PageTitle = "body" StrFileName = "Article_Show.asp" If ArticleId <= 0 then FoundErr = true ErrMsg = ErrMsg & "<br> <li> specify the Article ID </li>" End if If FoundErr = True then Call WriteErrMsg () Else %>

Continue searching:

<% = Replace (rs ("Content"), chr (34), "") %>

Replace:

<% Call ShowArticleContent () %>

Okay., Success! In this case, the full text of this article cannot be printed unless the number is sufficient (or the validity period is not expired! Test now! This modification method is available on my own website () Test, no side effects! (If someone finds a new power vulnerability or an error in my modification method, I want to be able to tell me (you can add my QQ, and fill in "Power Vulnerability" for verification information ", although the problem cannot be solved, I will try my best! ^-^)

If needed, you can go to my website to test,Fly over happy home
If you do not want to register, you can use the test account: test password: testtest

Note: I did not find this solution first, but it took me half an hour to change the code for more than ten times and print several sheets of paper! (I am a dish in programming, so I have to pay this discount ~~~~ Don't laugh at me ~~ ^-^)