Shulou(Shulou.com)05/31 Report--

Editor to share with you PHPmyadmin vulnerabilities and take shell example analysis, I believe that most people do not know much about it, so share this article for your reference, I hope you will learn a lot after reading this article, let's go to know it!

Relatively speaking, there are still many loopholes in phpmyadmin. For beginners, share a few vulnerabilities, and those who are deeply involved in code audit can also discuss with me.

Phpmyadmin2.11.3-2.11.4 these two versions have a universal password, directly use 'localhost'@'@ "as the account, the password does not need to be entered.

An empty password exists in this version of phpmyadmin2.11.9.2. Log in directly to root users without password

If you are looking for this, use your own script, or search engine, and those who know it here will understand it, and it is not here either.

About getting shell,---- "root permission, and have write file permission -" the exported directory has write permission-"in some cases, even if you have both, some configuration of the server will still affect this.

Access a database before getshell

First, use the SQL statement to create a table, add a field, the content of the field is a sentence, then export to the php file, and finally delete the table, this is the safest way

Create TABLE table (column text NOT NULL)

Insert INTO table (column) VALUES ('')

Select column from table into _ utfile 'path'

Drop TABLE IF EXISTS table

The second method, this is to write directly

Select 'one sentence' INTO _ UTFILE 'path'

There are several other methods, and the principle is roughly the same.

And then, in general, every word is

If there is a dog, use a sentence that does not need to be killed. The following is a sentence I constructed before the Chinese New year. It should be OK now.

If you're looking for a path,

1 phpMyAdmin/index.php?lang / use phpinfo.php 2 hand / use some phpmyadmin files to report errors, the following are commonly used on the Internet / phpMyAdmin/index.php?lang [] = 1 / phpMyAdmin/phpinfo.php / load_file () / phpmyadmin/themes/darkblue_orange/layout.inc.php / phpmyadmin/libraries/select_lang.lib.php / phpmyadmin/libraries/lect_lang.lib.php / phpmyadmin/libraries/mcrypt.lib.php / phpmyadmin/libraries/export/xls.php3//. In addition, use the website package path. These will all be able to, will not slowly will.

Let's start the actual combat. The script scans to an IP, which shows that there is a phpmyadmin. Open it.

A look at these php files is the back door, put tens of thousands of dictionaries into the explosion, two seconds

Direct kitchen knife link.

This must have been messed up, just pack up your stuff, you know. The promotion of power is not necessary.

The above is all the contents of the article "PHPmyadmin vulnerabilities and sample Analysis with shell". Thank you for reading! I believe we all have a certain understanding, hope to share the content to help you, if you want to learn more knowledge, welcome to follow the industry information channel!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.