WooYun.org

下面给出案例
http://www.zyhlnet.com/showservices.asp?id=112
http://www.eurobot.cn/showservices.asp?id=16
http://www.dragoncloud.cn/showservices.asp?id=2
http://www.cds-ccd.com/showservices.asp?id=425
http://www.hhswny.com/showservices.asp?id=149
http://tsfreight.com/cn/showservices.asp?id=81
http://www.tsfreight.com/cn/showservices.asp?id=84
http://www.itrye.com/showservices.asp?id=126
http://www.xjbaochun.cn/showservices.asp?id=19
http://expimp.com/wytc/temp/53/showservices.asp?id=17
http://www.euand.com/showservices.asp?id=142
http://www.zhmaster.cn/showservices.asp?id=174
http://www.dingquan.cn/showservices.asp?id=123
http://www.lftiandi.com/showservices.asp?id=130
http://www.mtrillion.com/showservices.asp?id=114
http://www.wxatech.com/showservices.asp?id=118
http://www.shxpower.com/showservices.asp?id=147
http://www.jx666.cn/showservices.asp?id=207
http://www.sdsjj.com/showservices.asp?id=30
http://www.wx-flower.com.cn/showservices.asp?id=113
下面为SQL注入证明截图：
http://www.zyhlnet.com/showservices.asp?id=112

http://www.eurobot.cn/showservices.asp?id=16

http://www.dragoncloud.cn/showservices.asp?id=2

http://www.cds-ccd.com/showservices.asp?id=425

http://www.hhswny.com/showservices.asp?id=149

下面是补充内容，通过检测发现此套CMS的表名均为admin。
但是字段比较难找，不过还是找到了，字段为uname;upass。
以下是截图证明：还是以下列网站为例。
http://www.zyhlnet.com/showservices.asp?id=112

http://www.eurobot.cn/showservices.asp?id=16

http://www.cds-ccd.com/showservices.asp?id=425