乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2013-06-14: 细节已通知厂商并且等待厂商处理中 2013-06-19: 厂商已经主动忽略漏洞,细节向公众公开
商务通使用数量上千万,至少垄断了医疗行业。此问题可引起医疗行业信息泄露
出现在http://yktadmin.zoosnet.net/ 商务通目前主打业务,98以上医院网址使用此客服系统。http://yktadmin.zoosnet.net/web.config 配置信息泄露http://yktadmin.zoosnet.net/admin.rar 源码泄露后台地址:http://yktadmin.zoosnet.net/LR_Admin/login.aspx其他不多说
public string Add(string p_Parent_Admin_ID, string p_Admin_Name, string p_Real_Name, string p_Taxis, string p_Role_ID){ string strRS = ""; try { DataTable dtUser = DataHelper.QueryByCommand("select " + AdminTable.DBColumn_Admin_ID + " from " + AdminTable.DBTable_T_Admin + " where " + AdminTable.DBColumn_Admin_Name + "=@" + AdminTable.DBColumn_Admin_Name, "@" + AdminTable.DBColumn_Admin_Name, p_Admin_Name); if (!(((dtUser == null) || (dtUser.Rows.Count == 0)) || dtUser.Rows[0][AdminTable.DBColumn_Admin_ID].ToString().Equals(""))) { return "此用户已存在!"; } DataTable dtParents = DataHelper.QueryByCommand("select " + AdminTable.DBColumn_Admin_Relation + " from " + AdminTable.DBTable_T_Admin + " where " + AdminTable.DBColumn_Admin_ID + "=@" + AdminTable.DBColumn_Parent_Admin_ID, "@" + AdminTable.DBColumn_Parent_Admin_ID, p_Parent_Admin_ID); if ((dtParents != null) && (dtParents.Rows.Count != 0)) { string p_Admin_Relation = dtParents.Rows[0][AdminTable.DBColumn_Admin_Relation].ToString() + "|" + p_Parent_Admin_ID; Hashtable htParameter = new Hashtable(); htParameter.Add("@" + AdminTable.DBColumn_Admin_Name, p_Admin_Name); htParameter.Add("@" + AdminTable.DBColumn_Taxis, p_Taxis); htParameter.Add("@" + AdminTable.DBColumn_Real_Name, p_Real_Name); htParameter.Add("@" + AdminTable.DBColumn_Parent_Admin_ID, p_Parent_Admin_ID); htParameter.Add("@" + AdminTable.DBColumn_Role_ID, p_Role_ID); htParameter.Add("@" + AdminTable.DBColumn_Admin_Relation, p_Admin_Relation); string SQLstring = "insert into " + AdminTable.DBTable_T_Admin + " (" + AdminTable.DBColumn_Parent_Admin_ID + "," + AdminTable.DBColumn_Admin_Name + "," + AdminTable.DBColumn_Real_Name + "," + AdminTable.DBColumn_Taxis + "," + AdminTable.DBColumn_Del_Flag + "," + AdminTable.DBColumn_Role_ID + "," + AdminTable.DBColumn_Admin_Relation + ")values(@" + AdminTable.DBColumn_Parent_Admin_ID + ",@" + AdminTable.DBColumn_Admin_Name + ",@" + AdminTable.DBColumn_Real_Name + ",@" + AdminTable.DBColumn_Taxis + ",'0',@" + AdminTable.DBColumn_Role_ID + ",@" + AdminTable.DBColumn_Admin_Relation + ")"; if (DataHelper.Execute(SQLstring, htParameter).IndexOf("False") != -1) { strRS = "添加失败!"; } else { strRS = "添加成功!"; try { Backup_TickLogic.Add(SQLstring, htParameter, "1", this.strAdmin_ID); } catch (Exception ex) { TextHelper.RecordErrorInfor(ex); } } } else { return "上级编号记录不存在!"; } } catch { strRS = "添加失败!"; } return strRS;}
系统配置问题引起。
危害等级:无影响厂商忽略
忽略时间:2013-06-19 17:59
暂无