PageAdmin v3.0 /e/database/v3.mdb 数据库泄漏

- AV AC AU C I A
发布: 2025-04-13
修订: 2025-04-13

<p>PageAdmin CMS V3.0版,默认数据库地址“/e/database/v3.mdb“,默认后台地址:“/e/master/login.aspx”,由于数据库地址未做限制,导致可以下载。通过逆向管理员MD5加密算法获得md5密文,并通过md5密文可以破解管理员密码。</p><p>发现非常规MD5加密,于是使用ILSPY逆向源代码,查看加密方式</p><pre class="">public string Get_Md5(string s) { MD5 mD = new MD5CryptoServiceProvider(); Encoding encoding = Encoding.GetEncoding("UTF-8"); string s2 = "pageadmin cms"; byte[] array = mD.ComputeHash(encoding.GetBytes(s)); byte[] array2 = mD.ComputeHash(encoding.GetBytes(s2)); StringBuilder stringBuilder = new StringBuilder(32); for (int i = 0; i &lt; array.Length; i++) { stringBuilder.Append(((int)(array[i] + array2[i])).ToString("x").PadLeft(2, '0')); } </pre><p>这是逆向工具的代码:</p><pre class=""><code>public static String unPageAdminPass(String pstr)<br> { <br> MD5 mD = new MD5CryptoServiceProvider();<br> Encoding encoding = Encoding.GetEncoding("UTF-8");<br> string s2 = "pageadmin cms";<br> byte[] array2 = mD.ComputeHash(encoding.GetBytes(s2));<br> StringBuilder stringBuilder = new StringBuilder(16);<br>...

0%
暂无可用Exp或PoC
当前有0条受影响产品信息