reviewpost_sql.nasl

来自「漏洞扫描源码,可以扫描linux,windows,交换机路由器」· NASL 代码 · 共 87 行

NASL

87 行

## Written by Astharot <astharot@zone-h.org># # Reference: http://www.zone-h.org/advisories/read/id=3864#if(description){ script_id(12042); script_cve_id("CVE-2004-2175"); script_bugtraq_id(9574, 12159); script_version("$Revision: 38 $"); name["english"] = "SQL injection in ReviewPost PHP Pro";  script_name(english:name["english"]);  desc["english"] = "The remote host could be vulnerable to SQL Injection, becauseyou are probably running ReviewPost PHP Pro, a web-based softwarethat manage users opinions.There is a flaw in this software which may allow a maliciousattacker to inject arbitrary SQL queries which allows it tofetch data from the database.Solution : Download the vendor supplied patch athttp://www.photopost.com/members/forum/showthread.php?s=&threadid=98098Risk factor : High"; script_description(english:desc["english"]);  summary["english"] = "SQL Injection";  script_summary(english:summary["english"]);  script_category(ACT_GATHER_INFO);  script_copyright(english:"This script is Copyright (C) 2004 Astharot"); family["english"] = "CGI abuses"; script_family(english:family["english"]); script_dependencie("find_service.nes", "http_version.nasl"); script_require_ports("Services/www", 80); script_exclude_keys("Settings/disable_cgi_scanning"); exit(0);}# Check starts hereinclude("http_func.inc");include("http_keepalive.inc");function check(dir){ req = http_get(item:dir + "/showproduct.php?product=1'", port:port); res = http_keepalive_send_recv(port:port, data:req); if ( res == NULL ) exit(0);   if ("id,user,userid,cat,date,title,description,manu,keywords,bigimage,bigimage2,bigimage3,views,approved,rating" >< res ) {	security_hole(port);	exit(0);	} req = http_get(item:dir + "/showcat.php?cat=1'", port:port); res = http_keepalive_send_recv(port:port, data:req); if ( res == NULL ) exit(0);  if ("id,catname FROM rp_categories" >< res ) {	security_hole(port);	exit(0);	}}port = get_http_port(default:80);if(!get_port_state(port))exit(0);if(!can_host_php(port:port))exit(0);foreach dir (cgi_dirs())  {  check(dir:dir); }

reviewpost_sql.nasl - 源码说明

本页面展示了「漏洞扫描源码,可以扫描linux,windows,交换机路由器」中的 reviewpost_sql.nasl 源码文件，采用 NASL 编程语言编写，共 87 行代码。您可以在线阅读完整代码内容，也可以返回资源详情页下载完整源码包进行本地学习和开发。

虫虫下载站收录了大量与windows相关的技术资源，包括源代码、技术文档、电路图等，是电子工程师和嵌入式开发者的专业学习平台。

⌨️ 快捷键说明

复制代码Ctrl + C

搜索代码Ctrl + F

全屏模式F11

增大字号Ctrl + =

减小字号Ctrl + -

显示快捷键?