乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-11-04: 积极联系厂商并且等待厂商认领中,细节不对外公开 2015-12-19: 厂商已经主动忽略漏洞,细节向公众公开
只求一个首页、
风讯CMSsql注入漏洞SQL注入漏洞:
/user/City_ajax.aspx?Cityid=1
前人案例:http://**.**.**.**/bugs/wooyun-2010-047165案例100+
http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://www.jintoneguilin.info//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://www.50pk.tv/user/City_ajax.aspx?Cityid=1http://www.viennaguilin.info/user/City_ajax.aspx?Cityid=1http://**.**.**.**:84/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://www.guishanhotel.info/user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://www.ronghuhotel.info/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**//user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1http://**.**.**.**/user/City_ajax.aspx?Cityid=1
太多了,我就测试三个、1#
http://**.**.**.**/user/City_ajax.aspx?Cityid=1 数据和用户
数据和用户
2#
http://**.**.**.**/user/City_ajax.aspx?Cityid=1 数据库和用户
数据库和用户
3#
http://www.jintoneguilin.info//user/City_ajax.aspx?Cityid=1 数据库和用户
求个首页
未能联系到厂商或者厂商积极拒绝