a preface
When we hacking, sometimes depends on luck, like I said this time. I will not say any of the schools. The other side of the ASP system I did not find any loopholes. Not even injected, there is no forum. I don't know if it's true or not, I've swept the other side with IDA holes. An ancient loophole, but this successful invasion and this does not matter, I in the Internet café, the system is 98 do nothing. 55555 the other side has firewall even if I successfully overflow it, also not even. Originally wanted to give up, but due to conditioned reflex, I tried to go into the background unexpectedly with the default account password went in, it seems that the other party's security awareness is not enough. That's why I wrote this article.
Two
Members can download the review of the college entrance examination data members need to pay money. Since the other side of the administrator is not responsible for this, if I do not do anything I am sorry him! I added a user and then downloaded some of the information that should have been paid by the member haha. Because the speed of the Internet bar is slow so I don't have a lot of
Three
Admin page or bug, as long as the administrator can upload pictures. But the page seems to be Java-restricted ASP
So I didn't break through. and the page that the action points to is itself. I did not successfully upload ASP trojan, but it does not matter, anyway, the server is no fun. Get the information has been very OK hehe. I am not a man of greed.
Four
I do not want to enjoy alone, the review of the material sent to everyone good, I hope this micro-lack of information on the college entrance examination of the friends to help, I now have the space is bad, if you want this information, then give me a message. Leave the mailbox. My QQ is 331627292.
Five PostScript
This successful access to information is the Administrator's security awareness of the if the malicious intruder has deleted the members of the consequences can be thought of. So the danger of using the default password and weak password is quite large. Because the password manager of this online network has not changed, in order to avoid trouble, I will not publish the site's address, forgive me.
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.
A Free Trial That Lets You Build Big!
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
