漏洞概要 关注数(24) 关注此漏洞
缺陷编号:wooyun-2015-0122086
漏洞标题:深圳市有信网络技术有限公司某站多处SQL注入泄漏海量用户信息涉及33个数据库2246个表
相关厂商:uxin.com
漏洞作者: Ysql404
提交时间:2015-06-24 10:40
修复时间:2015-08-08 10:50
公开时间:2015-08-08 10:50
漏洞类型:SQL注射漏洞
危害等级:高
自评Rank:20
漏洞状态:厂商已经确认
漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]
Tags标签: 无
漏洞详情
披露状态:
2015-06-24: 细节已通知厂商并且等待厂商处理中
2015-06-24: 厂商已经确认,细节仅向厂商公开
2015-07-04: 细节向核心白帽子及相关领域专家公开
2015-07-14: 细节向普通白帽子公开
2015-07-24: 细节向实习白帽子公开
2015-08-08: 细节向公众公开
简要描述:
有信免费电话是有信网络技术有限公司于2012年3月正式上线的一款核心级主推应用产品,上线伊始便在全球进行通信线路布局,迄今已有8000万全球用户体验了有信的高清免费通话与社交分享功能。目前,有信以40%的第一市场占有率,成为免费电话行业的翘楚。
详细说明:
有信电话主站多处伪静态 SQL注入:
1、http://www.uxin.com/update/show/os/android/Id/274.html
2、http://www.uxin.com/news/index/type/1.html
3、http://www.uxin.com/news/info/id/1277.html
涉及33个数据库2246个表
漏洞证明:
<code>
Database: report
[218 tables]
+------------------------------------------------+
| T_AliveUser |
| T_AliveUser_month |
| T_AliveUsermonth |
| T_Retention |
| T_awrad |
| T_awrad_month |
| T_callstat |
| T_callstat20140508 |
| T_callstat_month |
| T_callstat_month_bk |
| T_callstat_version |
| T_freecall |
| T_regaward |
| T_regsessce |
| T_regsource |
| T_regsource_bk |
| T_sign |
| T_sys |
| T_sys522 |
| T_version |
| abtest |
| abtest_201308 |
| abtest_201309 |
| abtest_201311 |
| abtest_201312 |
| abtest_201402 |
| abtest_201403 |
| abtest_201404 |
| abtest_201405 |
| abtest_201406 |
| abtest_201407 |
| abtest_201409 |
| abtest_201411 |
| abtest_201412 |
| abtest_201501 |
| abtest_201502 |
| abtest_201503 |
| abtest_201504 |
| add_money_log |
| add_monthmoney_log |
| banklist |
| call_center_config |
| call_quality |
| cq_freebasic |
| error_log_report |
| error_log_report_reason |
| im_total |
| ip_china |
| ip_data |
| ip_data_china |
| ip_data_inter |
| monitor_cs_history_ip |
| monitor_cs_timing_ip |
| monitor_freecall_history_ip |
| monitor_freecall_timing_ip |
| no_uxin_phone |
| phonearea |
| specific_month_log |
| t_act_gift |
| t_act_month |
| t_act_month140430 |
| t_act_prize |
| t_act_prizelog |
| t_act_viewlog |
| t_active_month_key |
| t_adgame |
| t_adgame_temp |
| t_alive_month |
| t_balance |
| t_balance_flow |
| t_blacklist |
| t_broadcast_newspush |
| t_broadcast_sum |
| t_broadcast_total |
| t_broadcast_total_tmp2 |
| t_broadcat_tmp |
| t_broadcat_tmp2 |
| t_broadcat_tmpmask |
| t_call_cost |
| t_call_level |
| t_call_minute_level |
| t_callstat_usertype |
| t_callstat_usertype_month |
| t_card |
| t_card_pull |
| t_card_use |
| t_commbook |
| t_downsoft_award_month |
| t_downsoft_reg_month |
| t_downsoft_user_day |
| t_downsoft_user_month |
| t_downsoft_wall |
| t_downsoft_wall_game |
| t_emodel_config |
| t_emodel_day |
| t_emodel_hour |
| t_emodel_tparm_hour |
| t_event_monitor |
| t_fdbk_type |
| t_fdbk_user |
| t_getpwd |
| t_graderead |
| t_import_list |
| t_import_user |
| t_integral_wall |
| t_invite_click_log |
| t_invite_user |
| t_lctest_0 |
| t_lctest_1 |
| t_lctest_3 |
| t_makemoney |
| t_membermonth |
| t_menu |
| t_menu_140506 |
| t_message |
| t_monitor_reg |
| t_month_call20140508 |
| t_month_continue |
| t_month_monitor |
| t_month_regfrom |
| t_month_regfrom_140408 |
| t_os_version |
| t_permeate |
| t_phonelocal |
| t_read_act_retained |
| t_read_reg_retained |
| t_recharge |
| t_recharge_abtest |
| t_recharge_fee_hour |
| t_recharge_member_month |
| t_recharge_num_hour |
| t_recharge_pay_month |
| t_recharge_situation_20140416 |
| t_recharge_type_day |
| t_recharge_type_fee_hour |
| t_recharge_type_num_hour |
| t_recharge_user_hour |
| t_reg_num_hour |
| t_reg_recharge_monitor |
| t_regsessce_part |
| t_regsource_msg |
| t_regsource_social |
| t_report_app |
| t_report_install |
| t_report_install_20131212 |
| t_report_install_bak |
| t_report_install_old |
| t_report_invite |
| t_report_invite_201301 |
| t_report_invite_201303 |
| t_report_invite_201304 |
| t_report_invite_201305 |
| t_report_invite_201306 |
| t_report_invite_201307 |
| t_report_invite_201308 |
| t_report_invite_201309 |
| t_report_invite_201310 |
| t_report_invite_201312 |
| t_report_invite_201402 |
| t_report_invite_201403 |
| t_report_invite_201404 |
| t_report_invite_201405 |
| t_report_invite_201407 |
| t_report_invite_201408 |
| t_report_invite_201409 |
| t_report_invite_201410 |
| t_report_invite_201411 |
| t_report_invite_201501 |
| t_report_invite_201502 |
| t_report_invite_201504 |
| t_report_invite_201505 |
| t_report_invite_201506 |
| t_retention_call |
| t_retention_monitor |
| t_retention_monitor_call |
| t_retention_week |
| t_retention_week_call |
| t_sign_month |
| t_sign_version |
| t_signin_num_hour |
| t_status_cs |
| t_status_cs_bak |
| t_status_cs_time |
| t_status_read |
| t_status_read_bk |
| t_status_tag |
| t_status_tel |
| t_status_tel_time |
| t_submission |
| t_submission_20140919 |
| t_test |
| t_test_call |
| t_test_prize |
| t_test_prizelog |
| t_thirdandphonereg |
| t_thirdreg |
| t_union_spread_active |
| t_upmonth |
| t_user |
| t_user_business |
| t_user_contact_info |
| t_user_grade |
| t_user_group |
| t_user_level |
| t_user_menu |
| t_user_profile |
| t_user_role |
| t_user_silencenode |
| t_userdown_day |
| t_userdown_month |
| t_userlive_expire |
| temp_register_bak |
| tmp_user |
| tmpcall_1 |
| tmpcall_2 |
| tuijian_soft_download |
| tuijian_user_laxin |
| unusual_call_user |
+------------------------------------------------+
Database: promote
[643 tables]
+------------------------------------------------+
| t_broadcast |
| t_broadcast_bk |
| t_broadcast_reward |
| t_broadcast_reward_bk |
| t_broadcast_rule |
| t_broadcast_rule_user_3296 |
| t_broadcast_rule_user_3702 |
| t_broadcast_rule_user_5121 |
| t_broadcast_rule_user_5123 |
| t_broadcast_rule_user_5124 |
| t_broadcast_rule_user_5127 |
| t_broadcast_rule_user_5128 |
| t_broadcast_rule_user_5129 |
| t_broadcast_rule_user_5130 |
| t_broadcast_rule_user_5131 |
| t_broadcast_rule_user_5133 |
| t_broadcast_rule_user_5134 |
| t_broadcast_rule_user_5136 |
| t_broadcast_rule_user_5137 |
| t_broadcast_rule_user_5139 |
| t_broadcast_rule_user_5140 |
| t_broadcast_rule_user_5141 |
| t_broadcast_rule_user_5142 |
| t_broadcast_rule_user_5143 |
| t_broadcast_rule_user_5144 |
| t_broadcast_rule_user_5145 |
| t_broadcast_rule_user_5149 |
| t_broadcast_rule_user_5150 |
| t_broadcast_rule_user_5151 |
| t_broadcast_rule_user_5152 |
| t_broadcast_rule_user_5153 |
| t_broadcast_rule_user_5154 |
| t_broadcast_rule_user_5157 |
| t_broadcast_rule_user_5158 |
| t_broadcast_rule_user_5159 |
| t_broadcast_rule_user_5160 |
| t_broadcast_rule_user_5162 |
| t_broadcast_rule_user_5163 |
| t_broadcast_rule_user_5164 |
| t_broadcast_rule_user_5166 |
| t_broadcast_rule_user_5167 |
| t_broadcast_rule_user_5169 |
| t_broadcast_rule_user_5171 |
| t_broadcast_rule_user_5172 |
| t_broadcast_rule_user_5173 |
| t_broadcast_rule_user_5174 |
| t_broadcast_rule_user_5177 |
| t_broadcast_rule_user_5180 |
| t_broadcast_rule_user_5183 |
| t_broadcast_rule_user_5184 |
| t_broadcast_rule_user_5185 |
| t_broadcast_rule_user_5186 |
| t_broadcast_rule_user_5187 |
| t_broadcast_rule_user_5188 |
| t_broadcast_rule_user_5189 |
| t_broadcast_rule_user_5191 |
| t_broadcast_rule_user_5192 |
| t_broadcast_rule_user_5193 |
| t_broadcast_rule_user_5194 |
| t_broadcast_rule_user_5197 |
| t_broadcast_rule_user_5199 |
| t_broadcast_rule_user_5200 |
| t_broadcast_rule_user_5201 |
| t_broadcast_rule_user_5202 |
| t_broadcast_rule_user_5203 |
| t_broadcast_rule_user_5204 |
| t_broadcast_rule_user_5205 |
| t_broadcast_rule_user_5206 |
| t_broadcast_rule_user_5207 |
| t_broadcast_rule_user_5208 |
| t_broadcast_rule_user_5209 |
| t_broadcast_rule_user_5210 |
| t_broadcast_rule_user_5211 |
| t_broadcast_rule_user_5212 |
| t_broadcast_rule_user_5215 |
| t_broadcast_rule_user_5216 |
| t_broadcast_rule_user_5218 |
| t_broadcast_rule_user_5219 |
| t_broadcast_rule_user_5221 |
| t_broadcast_rule_user_5222 |
| t_broadcast_rule_user_5223 |
| t_broadcast_rule_user_5224 |
| t_broadcast_rule_user_5225 |
| t_broadcast_rule_user_5227 |
| t_broadcast_rule_user_5228 |
| t_broadcast_rule_user_5229 |
| t_broadcast_rule_user_5231 |
| t_broadcast_rule_user_5232 |
| t_broadcast_rule_user_5233 |
| t_broadcast_rule_user_5234 |
| t_broadcast_rule_user_5235 |
| t_broadcast_rule_user_5236 |
| t_broadcast_rule_user_5237 |
| t_broadcast_rule_user_5238 |
| t_broadcast_rule_user_5239 |
| t_broadcast_rule_user_5240 |
| t_broadcast_rule_user_5241 |
| t_broadcast_rule_user_5242 |
| t_broadcast_rule_user_5243 |
| t_broadcast_rule_user_5244 |
| t_broadcast_rule_user_5245 |
| t_broadcast_rule_user_5246 |
| t_broadcast_rule_user_5248 |
| t_broadcast_rule_user_5250 |
| t_broadcast_rule_user_5251 |
| t_broadcast_rule_user_5254 |
| t_broadcast_rule_user_5255 |
| t_broadcast_rule_user_5256 |
| t_broadcast_rule_user_5258 |
| t_broadcast_rule_user_5259 |
| t_broadcast_rule_user_5260 |
| t_broadcast_rule_user_5261 |
| t_broadcast_rule_user_5264 |
| t_broadcast_rule_user_5265 |
| t_broadcast_rule_user_5266 |
| t_broadcast_rule_user_5267 |
| t_broadcast_rule_user_5268 |
| t_broadcast_rule_user_5269 |
| t_broadcast_rule_user_5270 |
| t_broadcast_rule_user_5274 |
| t_broadcast_rule_user_5275 |
| t_broadcast_rule_user_5276 |
| t_broadcast_rule_user_5277 |
| t_broadcast_rule_user_5278 |
| t_broadcast_rule_user_5279 |
| t_broadcast_rule_user_5280 |
| t_broadcast_rule_user_5281 |
| t_broadcast_rule_user_5282 |
| t_broadcast_rule_user_5283 |
| t_broadcast_rule_user_5284 |
| t_broadcast_rule_user_5285 |
| t_broadcast_rule_user_5286 |
| t_broadcast_rule_user_5288 |
| t_broadcast_rule_user_5289 |
| t_broadcast_rule_user_5291 |
| t_broadcast_rule_user_5292 |
| t_broadcast_rule_user_5293 |
| t_broadcast_rule_user_5294 |
| t_broadcast_rule_user_5299 |
| t_broadcast_rule_user_5300 |
| t_broadcast_rule_user_5302 |
| t_broadcast_rule_user_5303 |
| t_broadcast_rule_user_5304 |
| t_broadcast_rule_user_5305 |
| t_broadcast_rule_user_5306 |
| t_broadcast_rule_user_5307 |
| t_broadcast_rule_user_5309 |
| t_broadcast_rule_user_5312 |
| t_broadcast_rule_user_5313 |
| t_broadcast_rule_user_5314 |
| t_broadcast_rule_user_5315 |
| t_broadcast_rule_user_5316 |
| t_broadcast_rule_user_5318 |
| t_broadcast_rule_user_5319 |
| t_broadcast_rule_user_5320 |
| t_broadcast_rule_user_5321 |
| t_broadcast_rule_user_5322 |
| t_broadcast_rule_user_5323 |
| t_broadcast_rule_user_5324 |
| t_broadcast_rule_user_5325 |
| t_broadcast_rule_user_5326 |
| t_broadcast_rule_user_5327 |
| t_broadcast_rule_user_5329 |
| t_broadcast_rule_user_5330 |
| t_broadcast_rule_user_5331 |
| t_broadcast_rule_user_5332 |
| t_broadcast_rule_user_5333 |
| t_broadcast_rule_user_5334 |
| t_broadcast_rule_user_5336 |
| t_broadcast_rule_user_5338 |
| t_broadcast_rule_user_5339 |
| t_broadcast_rule_user_5340 |
| t_broadcast_rule_user_5341 |
| t_broadcast_rule_user_5342 |
| t_broadcast_rule_user_5344 |
| t_broadcast_rule_user_5345 |
| t_broadcast_rule_user_5346 |
| t_broadcast_rule_user_5347 |
| t_broadcast_rule_user_5348 |
| t_broadcast_rule_user_5350 |
| t_broadcast_rule_user_5351 |
| t_broadcast_rule_user_5352 |
| t_broadcast_rule_user_5355 |
| t_broadcast_rule_user_5356 |
| t_broadcast_rule_user_5357 |
| t_broadcast_rule_user_5360 |
| t_broadcast_rule_user_5362 |
| t_broadcast_rule_user_5363 |
| t_broadcast_rule_user_5366 |
| t_broadcast_rule_user_5367 |
| t_broadcast_rule_user_5368 |
| t_broadcast_rule_user_5369 |
| t_broadcast_rule_user_5370 |
| t_broadcast_rule_user_5371 |
| t_broadcast_rule_user_5372 |
| t_broadcast_rule_user_bk |
| t_broadcast_userlist_24113 |
| t_broadcast_userlist_24115 |
| t_broadcast_userlist_24116 |
| t_broadcast_userlist_24117 |
| t_broadcast_userlist_24118 |
| t_broadcast_userlist_24119 |
| t_broadcast_userlist_24145 |
| t_broadcast_userlist_24148 |
| t_broadcast_userlist_24149 |
| t_broadcast_userlist_24150 |
| t_broadcast_userlist_24151 |
| t_broadcast_userlist_24155 |
| t_broadcast_userlist_24156 |
| t_broadcast_userlist_24158 |
| t_broadcast_userlist_24159 |
| t_broadcast_userlist_24161 |
| t_broadcast_userlist_24163 |
| t_broadcast_userlist_24164 |
| t_broadcast_userlist_24167 |
| t_broadcast_userlist_24169 |
| t_broadcast_userlist_24171 |
| t_broadcast_userlist_24172 |
| t_broadcast_userlist_24173 |
| t_broadcast_userlist_24174 |
| t_broadcast_userlist_24177 |
| t_broadcast_userlist_24178 |
| t_broadcast_userlist_24179 |
| t_broadcast_userlist_24181 |
| t_broadcast_userlist_24182 |
| t_broadcast_userlist_24183 |
| t_broadcast_userlist_24185 |
| t_broadcast_userlist_24188 |
| t_broadcast_userlist_24189 |
| t_broadcast_userlist_24190 |
| t_broadcast_userlist_24195 |
| t_broadcast_userlist_24196 |
| t_broadcast_userlist_24197 |
| t_broadcast_userlist_24198 |
| t_broadcast_userlist_24199 |
| t_broadcast_userlist_24200 |
| t_broadcast_userlist_24201 |
| t_broadcast_userlist_24202 |
| t_broadcast_userlist_24203 |
| t_broadcast_userlist_24204 |
| t_broadcast_userlist_24205 |
| t_broadcast_userlist_24208 |
| t_broadcast_userlist_24209 |
| t_broadcast_userlist_24210 |
| t_broadcast_userlist_24211 |
| t_broadcast_userlist_24212 |
| t_broadcast_userlist_24214 |
| t_broadcast_userlist_24215 |
| t_broadcast_userlist_24216 |
| t_broadcast_userlist_24217 |
| t_broadcast_userlist_24218 |
| t_broadcast_userlist_24219 |
| t_broadcast_userlist_24221 |
| t_broadcast_userlist_24222 |
| t_broadcast_userlist_24223 |
| t_broadcast_userlist_24229 |
| t_broadcast_userlist_24231 |
| t_broadcast_userlist_24233 |
| t_broadcast_userlist_24234 |
| t_broadcast_userlist_24235 |
| t_broadcast_userlist_24236 |
| t_broadcast_userlist_24237 |
| t_broadcast_userlist_24238 |
| t_broadcast_userlist_24239 |
| t_broadcast_userlist_24241 |
| t_broadcast_userlist_24242 |
| t_broadcast_userlist_24244 |
| t_broadcast_userlist_24245 |
| t_broadcast_userlist_24246 |
| t_broadcast_userlist_24247 |
| t_broadcast_userlist_24248 |
| t_broadcast_userlist_24249 |
| t_broadcast_userlist_24250 |
| t_broadcast_userlist_24252 |
| t_broadcast_userlist_24253 |
| t_broadcast_userlist_24255 |
| t_broadcast_userlist_24256 |
| t_broadcast_userlist_24258 |
| t_broadcast_userlist_24260 |
| t_broadcast_userlist_24261 |
| t_broadcast_userlist_24262 |
| t_broadcast_userlist_24264 |
| t_broadcast_userlist_24265 |
| t_broadcast_userlist_24266 |
| t_broadcast_userlist_24267 |
| t_broadcast_userlist_24268 |
| t_broadcast_userlist_24269 |
| t_broadcast_userlist_24271 |
| t_broadcast_userlist_24272 |
| t_broadcast_userlist_24273 |
| t_broadcast_userlist_24274 |
| t_broadcast_userlist_24275 |
| t_broadcast_userlist_24277 |
| t_broadcast_userlist_24280 |
| t_broadcast_userlist_24281 |
| t_broadcast_userlist_24282 |
| t_broadcast_userlist_24283 |
| t_broadcast_userlist_24284 |
| t_broadcast_userlist_24286 |
| t_broadcast_userlist_24287 |
| t_broadcast_userlist_24288 |
| t_broadcast_userlist_24290 |
| t_broadcast_userlist_24291 |
| t_broadcast_userlist_24292 |
| t_broadcast_userlist_24293 |
| t_broadcast_userlist_24294 |
| t_broadcast_userlist_24295 |
| t_broadcast_userlist_24296 |
| t_broadcast_userlist_24297 |
| t_broadcast_userlist_24298 |
| t_broadcast_userlist_24300 |
| t_broadcast_userlist_24301 |
| t_broadcast_userlist_24302 |
| t_broadcast_userlist_24303 |
| t_broadcast_userlist_24305 |
| t_broadcast_userlist_24307 |
| t_broadcast_userlist_24308 |
| t_broadcast_userlist_24311 |
| t_broadcast_userlist_24313 |
| t_broadcast_userlist_24315 |
| t_broadcast_userlist_24316 |
| t_broadcast_userlist_24318 |
| t_broadcast_userlist_24319 |
| t_broadcast_userlist_24320 |
| t_broadcast_userlist_24322 |
| t_broadcast_userlist_24323 |
| t_broadcast_userlist_24324 |
| t_broadcast_userlist_24325 |
| t_broadcast_userlist_24326 |
| t_broadcast_userlist_24327 |
| t_broadcast_userlist_24330 |
| t_broadcast_userlist_24332 |
| t_broadcast_userlist_24333 |
| t_broadcast_userlist_24334 |
| t_broadcast_userlist_24335 |
| t_broadcast_userlist_24337 |
| t_broadcast_userlist_24339 |
| t_broadcast_userlist_24341 |
| t_broadcast_userlist_24342 |
| t_broadcast_userlist_24344 |
| t_broadcast_userlist_24345 |
| t_broadcast_userlist_24347 |
| t_broadcast_userlist_24348 |
| t_broadcast_userlist_24349 |
| t_broadcast_userlist_24351 |
| t_broadcast_userlist_24352 |
| t_broadcast_userlist_24353 |
| t_broadcast_userlist_24355 |
| t_broadcast_userlist_24356 |
| t_broadcast_userlist_24357 |
| t_broadcast_userlist_24358 |
| t_broadcast_userlist_24359 |
| t_broadcast_userlist_24361 |
| t_broadcast_userlist_24362 |
| t_broadcast_userlist_24367 |
| t_broadcast_userlist_24368 |
| t_broadcast_userlist_24369 |
| t_broadcast_userlist_24371 |
| t_broadcast_userlist_24372 |
| t_broadcast_userlist_24373 |
| t_broadcast_userlist_24374 |
| t_broadcast_userlist_24375 |
| t_broadcast_userlist_24377 |
| t_broadcast_userlist_24378 |
| t_broadcast_userlist_24379 |
| t_broadcast_userlist_24380 |
| t_broadcast_userlist_24381 |
| t_broadcast_userlist_24382 |
| t_broadcast_userlist_24383 |
| t_broadcast_userlist_24384 |
| t_broadcast_userlist_24386 |
| t_broadcast_userlist_24387 |
| t_broadcast_userlist_24388 |
| t_broadcast_userlist_24389 |
| t_broadcast_userlist_24390 |
| t_broadcast_userlist_24391 |
| t_broadcast_userlist_24392 |
| t_broadcast_userlist_24393 |
| t_broadcast_userlist_24398 |
| t_broadcast_userlist_24399 |
| t_broadcast_userlist_24400 |
| t_broadcast_userlist_24402 |
| t_broadcast_userlist_24403 |
| t_broadcast_userlist_24404 |
| t_broadcast_userlist_24405 |
| t_broadcast_userlist_24407 |
| t_broadcast_userlist_24408 |
| t_broadcast_userlist_24410 |
| t_broadcast_userlist_24411 |
| t_broadcast_userlist_24412 |
| t_broadcast_userlist_24414 |
| t_broadcast_userlist_24415 |
| t_broadcast_userlist_24416 |
| t_broadcast_userlist_24417 |
| t_broadcast_userlist_24419 |
| t_broadcast_userlist_24420 |
| t_broadcast_userlist_24421 |
| t_broadcast_userlist_24422 |
| t_broadcast_userlist_24424 |
| t_broadcast_userlist_24425 |
| t_broadcast_userlist_24426 |
| t_broadcast_userlist_24427 |
| t_broadcast_userlist_24428 |
| t_broadcast_userlist_24430 |
| t_broadcast_userlist_24431 |
| t_broadcast_userlist_24432 |
| t_broadcast_userlist_24433 |
| t_broadcast_userlist_24435 |
| t_broadcast_userlist_24437 |
| t_broadcast_userlist_24438 |
| t_broadcast_userlist_24439 |
| t_broadcast_userlist_24441 |
| t_broadcast_userlist_24442 |
| t_broadcast_userlist_24443 |
| t_broadcast_userlist_24444 |
| t_broadcast_userlist_24446 |
| t_broadcast_userlist_24447 |
| t_broadcast_userlist_24448 |
| t_broadcast_userlist_24449 |
| t_broadcast_userlist_24450 |
| t_broadcast_userlist_24452 |
| t_broadcast_userlist_24455 |
| t_broadcast_userlist_24456 |
| t_broadcast_userlist_24457 |
| t_broadcast_userlist_24458 |
| t_broadcast_userlist_24459 |
| t_broadcast_userlist_24460 |
| t_broadcast_userlist_24461 |
| t_broadcast_userlist_24462 |
| t_broadcast_userlist_24463 |
| t_broadcast_userlist_24464 |
| t_broadcast_userlist_24465 |
| t_broadcast_userlist_24466 |
| t_broadcast_userlist_24467 |
| t_broadcast_userlist_24468 |
| t_broadcast_userlist_24470 |
| t_broadcast_userlist_24471 |
| t_broadcast_userlist_24472 |
| t_broadcast_userlist_24473 |
| t_broadcast_userlist_24475 |
| t_broadcast_userlist_24476 |
| t_broadcast_userlist_24477 |
| t_broadcast_userlist_24478 |
| t_broadcast_userlist_24479 |
| t_broadcast_userlist_24480 |
| t_broadcast_userlist_24481 |
| t_broadcast_userlist_24483 |
| t_broadcast_userlist_24484 |
| t_broadcast_userlist_24485 |
| t_broadcast_userlist_24486 |
| t_broadcast_userlist_24487 |
| t_broadcast_userlist_24488 |
| t_broadcast_userlist_24489 |
| t_broadcast_userlist_24490 |
| t_broadcast_userlist_24491 |
| t_broadcast_userlist_24495 |
| t_broadcast_userlist_24496 |
| t_broadcast_userlist_24497 |
| t_broadcast_userlist_24498 |
| t_broadcast_userlist_24499 |
| t_broadcast_userlist_24500 |
| t_broadcast_userlist_24501 |
| t_broadcast_userlist_24502 |
| t_broadcast_userlist_24503 |
| t_broadcast_userlist_24504 |
| t_broadcast_userlist_24505 |
| t_broadcast_userlist_24506 |
| t_broadcast_userlist_24507 |
| t_broadcast_userlist_24508 |
| t_broadcast_userlist_24509 |
| t_broadcast_userlist_24513 |
| t_broadcast_userlist_24514 |
| t_broadcast_userlist_24515 |
| t_broadcast_userlist_24516 |
| t_broadcast_userlist_24517 |
| t_broadcast_userlist_24518 |
| t_broadcast_userlist_24520 |
| t_broadcast_userlist_24521 |
| t_broadcast_userlist_24522 |
| t_broadcast_userlist_24523 |
| t_broadcast_userlist_24524 |
| t_broadcast_userlist_24525 |
| t_broadcast_userlist_24526 |
| t_broadcast_userlist_24527 |
| t_broadcast_userlist_24530 |
| t_broadcast_userlist_24531 |
| t_broadcast_userlist_24533 |
| t_broadcast_userlist_24534 |
| t_broadcast_userlist_24536 |
| t_broadcast_userlist_24537 |
| t_broadcast_userlist_24538 |
| t_broadcast_userlist_24539 |
| t_broadcast_userlist_24540 |
| t_broadcast_userlist_24541 |
| t_broadcast_userlist_24544 |
| t_broadcast_userlist_24545 |
| t_broadcast_userlist_24546 |
| t_broadcast_userlist_24547 |
| t_broadcast_userlist_24548 |
| t_broadcast_userlist_24550 |
| t_broadcast_userlist_24553 |
| t_broadcast_userlist_24554 |
| t_broadcast_userlist_24555 |
| t_broadcast_userlist_24556 |
| t_broadcast_userlist_24557 |
| t_broadcast_userlist_24558 |
| t_broadcast_userlist_24559 |
| t_broadcast_userlist_24563 |
| t_broadcast_userlist_24565 |
| t_broadcast_userlist_24566 |
| t_broadcast_userlist_24567 |
| t_broadcast_userlist_24569 |
| t_broadcast_userlist_24570 |
| t_broadcast_userlist_24572 |
| t_broadcast_userlist_24573 |
| t_broadcast_userlist_24574 |
| t_broadcast_userlist_24575 |
| t_broadcast_userlist_24576 |
| t_broadcast_userlist_24577 |
| t_broadcast_userlist_24578 |
| t_broadcast_userlist_24579 |
| t_broadcast_userlist_24580 |
| t_broadcast_userlist_24582 |
| t_broadcast_userlist_24584 |
| t_broadcast_userlist_24585 |
| t_broadcast_userlist_24586 |
| t_broadcast_userlist_24587 |
| t_broadcast_userlist_24589 |
| t_broadcast_userlist_24590 |
| t_broadcast_userlist_24591 |
| t_broadcast_userlist_24592 |
| t_broadcast_userlist_24593 |
| t_broadcast_userlist_24594 |
| t_broadcast_userlist_24596 |
| t_broadcast_userlist_24597 |
| t_broadcast_userlist_24598 |
| t_broadcast_userlist_24599 |
| t_broadcast_userlist_24600 |
| t_broadcast_userlist_24603 |
| t_broadcast_userlist_24604 |
| t_broadcast_userlist_24605 |
| t_broadcast_userlist_24607 |
| t_broadcast_userlist_24608 |
| t_broadcast_userlist_24612 |
| t_broadcast_userlist_24613 |
| t_broadcast_userlist_24614 |
| t_broadcast_userlist_24615 |
| t_broadcast_userlist_24616 |
| t_broadcast_userlist_24617 |
| t_broadcast_userlist_24618 |
| t_broadcast_userlist_24621 |
| t_broadcast_userlist_24622 |
| t_broadcast_userlist_24623 |
| t_broadcast_userlist_24624 |
| t_broadcast_userlist_24625 |
| t_broadcast_userlist_24626 |
| t_broadcast_userlist_24627 |
| t_broadcast_userlist_24628 |
| t_broadcast_userlist_24629 |
| t_broadcast_userlist_24630 |
| t_broadcast_userlist_24631 |
| t_broadcast_userlist_24633 |
| t_broadcast_userlist_24634 |
| t_broadcast_userlist_24640 |
| t_broadcast_userlist_24642 |
| t_broadcast_userlist_24643 |
| t_broadcast_userlist_24644 |
| t_broadcast_userlist_24645 |
| t_broadcast_userlist_24646 |
| t_broadcast_userlist_24647 |
| t_broadcast_userlist_24648 |
| t_broadcast_userlist_24649 |
| t_broadcast_userlist_24650 |
| t_broadcast_userlist_24652 |
| t_broadcast_userlist_24653 |
| t_broadcast_userlist_24654 |
| t_broadcast_userlist_24655 |
| t_broadcast_userlist_24657 |
| t_broadcast_userlist_24658 |
| t_broadcast_userlist_24659 |
| t_broadcast_userlist_24660 |
| t_broadcast_userlist_24662 |
| t_broadcast_userlist_24664 |
| t_broadcast_userlist_24666 |
| t_broadcast_userlist_24667 |
| t_broadcast_userlist_24668 |
| t_broadcast_userlist_24669 |
| t_broadcast_userlist_24671 |
| t_broadcast_userlist_24673 |
| t_broadcast_userlist_24674 |
| t_broadcast_userlist_24676 |
| t_broadcast_userlist_24677 |
| t_broadcast_userlist_24680 |
| t_broadcast_userlist_24681 |
| t_broadcast_userlist_24682 |
| t_broadcast_userlist_24683 |
| t_broadcast_userlist_24684 |
| t_broadcast_userlist_24685 |
| t_broadcast_userlist_24687 |
| t_broadcast_userlist_24688 |
| t_broadcast_userlist_24689 |
| t_broadcast_userlist_24691 |
| t_broadcast_userlist_24692 |
| t_broadcast_userlist_24693 |
| t_broadcast_userlist_24694 |
| t_broadcast_userlist_24695 |
| t_broadcast_userlist_24696 |
| t_broadcast_userlist_24698 |
| t_broadcast_userlist_24699 |
| t_broadcast_userlist_24700 |
| t_broadcast_userlist_24701 |
| t_broadcast_userlist_24702 |
| t_broadcast_userlist_24703 |
| t_broadcast_userlist_24705 |
| t_broadcast_userlist_24706 |
| t_broadcast_userlist_24707 |
| t_channel |
| t_hive_rule |
| t_msg_head |
| t_msg_log_bk11 |
| t_msg_source |
| t_msg_tag |
| t_new_reg_tmp_04_16_21 |
| t_new_reg_tmp_04_22_27 |
| t_new_reg_tmp_04_22_27_0_1 |
| t_new_reg_tmp_04_22_27_2_3 |
| t_new_reg_tmp_04_22_27_6_7 |
| t_new_reg_tmp_04_22_27_8_9 |
| t_promote_process |
| t_promote_rule |
| t_reg_crazy_test_tmp |
| t_regsource_social |
| t_temp_active_user_test |
| t_tmp_8143_reg_time_uid |
| t_tmp_8143_reg_time_uid_reach |
| temp_16796 |
| temp_16796_bk_2 |
| temp_16799 |
| temp_union_aa |
| temp_union_bb |
| temp_user_08 |
| temp_user_diff |
| temp_user_diff_2 |
+------------------------------------------------+
Database: goodscenter
[25 tables]
+------------------------------------------------+
| t_failed_record |
| t_fn_user_product |
| t_goods |
| t_goods_cate |
| t_goods_product |
| t_goods_product_shiplist |
| t_iphone_goods |
| t_member |
| t_member_order_log |
| t_order_list |
| t_order_paytype |
| t_product_cate |
| t_product_flow |
| t_product_fn |
| t_product_hardware |
| t_product_inter_discount |
| t_product_lottery |
| t_product_member |
| t_product_shownum |
| t_product_time_interval |
| t_product_uxin_member |
| t_product_wifi |
| t_user_time_interval |
| t_uxin_member |
| t_uxin_member_log |
+------------------------------------------------+
Database: performance_schema
[30 tables]
+------------------------------------------------+
| accounts |
| cond_instances |
| events_stages_current |
| events_stages_history |
| events_stages_summary_by_account_by_event_name |
| events_stages_summary_by_user_by_event_name |
| events_stages_summary_global_by_event_name |
| events_statements_history |
| events_statements_history_long |
| events_statements_summary_by_digest |
| events_waits_current |
| events_waits_summary_by_account_by_event_name |
| events_waits_summary_by_host_by_event_name |
| events_waits_summary_by_instance |
| events_waits_summary_by_thread_by_event_name |
| events_waits_summary_by_user_by_event_name |
| events_waits_summary_global_by_event_name |
| file_instances |
| file_summary_by_event_name |
| host_cache |
| hosts |
| mutex_instances |
| rwlock_instances |
| session_account_connect_attrs |
| setup_consumers |
| setup_instruments |
| setup_timers |
| socket_instances |
| socket_summary_by_instance |
| users |
+------------------------------------------------+
Database: randomcall
[90 tables]
+------------------------------------------------+
| t_flower_record_20140625 |
| t_flower_record_20140627 |
| t_flower_record_20140629 |
| t_flower_record_20140630 |
| t_flower_record_20140701 |
| t_flower_record_20140702 |
| t_flower_record_20140704 |
| t_flower_record_20140705 |
| t_flower_record_20140706 |
| t_flower_record_20140708 |
| t_flower_record_20140710 |
| t_flower_record_20140711 |
| t_flower_record_20140712 |
| t_flower_record_20140713 |
| t_flower_record_20140715 |
| t_flower_record_20140716 |
| t_flower_record_20140717 |
| t_flower_record_20140718 |
| t_flower_record_20140719 |
| t_flower_record_20140720 |
| t_flower_record_20140721 |
| t_flower_record_20140722 |
| t_flower_record_20140723 |
| t_flower_record_20140724 |
| t_flower_record_20140725 |
| t_flower_record_20140726 |
| t_flower_record_20140727 |
| t_flower_record_20140728 |
| t_flower_record_20140729 |
| t_flower_record_20140731 |
| t_flower_record_20140802 |
| t_flower_record_20140803 |
| t_flower_record_20140804 |
| t_flower_record_20140805 |
| t_flower_record_20140806 |
| t_flower_record_20140808 |
| t_flower_record_20140809 |
| t_flower_record_20140810 |
| t_flower_record_20140812 |
| t_flower_record_20140813 |
| t_flower_record_20140814 |
| t_flower_record_20140819 |
| t_flower_record_20140821 |
| t_flower_record_20140825 |
| t_flower_record_20140827 |
| t_flower_record_20140828 |
| t_flower_record_20140829 |
| t_flower_record_20140831 |
| t_flower_record_20140901 |
| t_flower_record_20140902 |
| t_flower_record_20140903 |
| t_flower_record_20140904 |
| t_flower_record_20140905 |
| t_flower_record_20140907 |
| t_flower_record_20140909 |
| t_flower_record_20140911 |
| t_flower_record_20140912 |
| t_flower_record_20140913 |
| t_flower_record_20140917 |
| t_flower_record_20140918 |
| t_flower_record_20140919 |
| t_flower_record_20140920 |
| t_flower_record_20140921 |
| t_flower_record_20140923 |
| t_flower_record_20140926 |
| t_flower_record_20140927 |
| t_flower_record_20140928 |
| t_flower_record_20140929 |
| t_flower_record_20140930 |
| t_flower_record_20141001 |
| t_flower_record_20141003 |
| t_flower_record_20141004 |
| t_flower_record_20141006 |
| t_flower_record_20141007 |
| t_flower_record_20141008 |
| t_flower_record_20141009 |
| t_flower_record_20141010 |
| t_flower_record_20141012 |
| t_flower_record_20141016 |
| t_flower_record_20141017 |
| t_flower_record_20141018 |
| t_flower_record_20141019 |
| t_flower_record_20141021 |
| t_flower_record_20141023 |
| t_flower_record_20141024 |
| t_flower_record_20141025 |
| t_flower_record_20141027 |
| t_flower_record_20141028 |
| t_flower_record_20141029 |
| t_user_flower |
+------------------------------------------------+
Database: union_uxin
[86 tables]
+------------------------------------------------+
| T_downsoft |
| T_reg_bk |
| T_reg_bk_20140411 |
| T_union |
| T_union_bk_20140411 |
| user |
| act_sms |
| active_call_user |
| ad_type |
| advertise_list |
| advertise_size |
| advertise_type |
| article |
| atmp |
| bill |
| bill_detail |
| bill_invoice |
| bill_pay |
| bill_print_log |
| call_reg |
| call_temp_reg |
| config |
| cps_rule |
| d |
| downsoft_app_send |
| downsoft_integral_wall |
| downsoft_integral_wall_201211 |
| downsoft_integral_wall_201212 |
| downsoft_integral_wall_201301 |
| downsoft_integral_wall_201302 |
| downsoft_integral_wall_201305 |
| downsoft_integral_wall_201306 |
| downsoft_integral_wall_201308 |
| downsoft_integral_wall_201309 |
| downsoft_integral_wall_201312 |
| downsoft_integral_wall_201401 |
| downsoft_integral_wall_201402 |
| downsoft_integral_wall_201403 |
| downsoft_integral_wall_201404 |
| downsoft_integral_wall_201405 |
| downsoft_integral_wall_201406 |
| downsoft_integral_wall_201409 |
| downsoft_integral_wall_201410 |
| downsoft_integral_wall_201411 |
| downsoft_integral_wall_201412 |
| downsoft_integral_wall_201501 |
| downsoft_integral_wall_201502 |
| downsoft_integral_wall_201504 |
| downsoft_integral_wall_201505 |
| downsoft_integral_wallbk |
| downsoft_user_log |
| e_bankroll |
| e_extend_action |
| e_extend_money |
| e_extend_reg |
| e_extend_reg_bak |
| e_extend_setup |
| e_getmoney |
| e_sysuser |
| e_sysuser_bk |
| e_sysuser_group |
| e_user_price_log |
| menu |
| menu_bk_20140506 |
| money_conversion |
| pay_mobile |
| power |
| power_role_map |
| reg_recharge_data |
| reg_recharge_data_bk_20140411 |
| temp_bank |
| temp_inter_balance_money |
| temp_inter_balance_reg |
| temp_money |
| temp_order |
| temp_reg_ad |
| temp_reg_user |
| union_ad_top |
| union_cpc_day |
| union_effect |
| union_effect_day |
| union_effect_month |
| user_mac_detail |
| user_mac_list |
| user_menu |
| yunying_month |
+------------------------------------------------+
Database: webyouxin
[59 tables]
+------------------------------------------------+
| user |
| appeal_pwd |
| download |
| faq |
| feedback |
| information |
| job |
| job_class |
| login_log |
| news |
| phone |
| power_columns |
| power_log |
| power_use_columns |
| reglog |
| secret_info |
| secret_question |
| secret_user_answer |
| shorturl2 |
| site |
| soft |
| statistics |
| system |
| union_ad |
| union_ad_log |
| union_ad_log_201209 |
| union_ad_log_201211 |
| union_ad_log_201212 |
| union_ad_log_201301 |
| union_ad_log_201302 |
| union_ad_log_201303 |
| union_ad_log_201304 |
| union_ad_log_201305 |
| union_ad_log_201306 |
| union_ad_log_201308 |
| union_ad_log_201309 |
| union_ad_log_201311 |
| union_ad_log_201312 |
| union_ad_log_201401 |
| union_ad_log_201403 |
| union_ad_log_201404 |
| union_ad_log_201405 |
| union_ad_log_201406 |
| union_ad_log_201407 |
| union_ad_log_201408 |
| union_ad_log_201409 |
| union_ad_log_201410 |
| union_ad_log_201411 |
| union_ad_log_201501 |
| union_ad_log_201502 |
| union_ad_log_201503 |
| union_ad_log_201504 |
| union_ad_log_201505 |
| union_ad_logtmpxx |
| up_buy |
| uploadlog |
| user_msg |
| user_prize |
| user_profile |
+------------------------------------------------+
Database: uxin_portal
[2 tables]
+------------------------------------------------+
| admin_user |
| sys_list |
+------------------------------------------------+
Database: ally
[76 tables]
+------------------------------------------------+
| a_apk_down |
| a_channel_call_month |
| a_channel_calltimes_month |
| a_channel_conversion |
| a_channel_day_reg |
| a_channel_daycall |
| a_channel_effect |
| a_channel_effect_1009_daoru |
| a_channel_effect_20141203 |
| a_channel_effect_20150227_bk |
| a_channel_effect_20150305_bk |
| a_channel_effect_29 |
| a_channel_effect_bk |
| a_channel_effect_call |
| a_channel_effect_call_201408 |
| a_channel_effect_call_201409 |
| a_channel_effect_call_201409_bk |
| a_channel_effect_call_201410 |
| a_channel_effect_call_201410_bk |
| a_channel_effect_call_201411 |
| a_channel_effect_call_201412 |
| a_channel_effect_call_201412_bk |
| a_channel_effect_call_201501 |
| a_channel_effect_call_201501_bk |
| a_channel_effect_call_201502 |
| a_channel_effect_call_20150227_bk |
| a_channel_effect_call_201503 |
| a_channel_effect_call_bk |
| a_channel_effect_product |
| a_channel_effect_product_29 |
| a_channel_health_product |
| a_ios_integral_wall |
| a_ios_wall_show_bk |
| a_market_bill |
| a_market_bill_check |
| a_market_bill_pay |
| a_market_bill_print |
| a_market_child_bill |
| a_menu |
| a_menu_bk |
| a_month_retain |
| a_now_reg_hour |
| a_now_reg_total |
| a_now_reg_uphours |
| a_reg_retained_day |
| a_reg_retained_day_20150109 |
| a_reg_retained_month |
| a_reg_retained_week |
| a_subsist_apply |
| a_subsist_check |
| a_subsist_invoice_info |
| a_subsist_pay_info |
| a_subsist_print_info |
| a_sysuser |
| a_sysuser_20141022 |
| a_terminal_model_month |
| a_terminal_ostype_day |
| a_user_role |
| a_week_retain |
| compare_balance_union |
| compare_balance_union_09 |
| compare_balance_union_10 |
| compare_balance_union_11 |
| compare_balance_union_12 |
| e_user |
| e_user_1009 |
| e_user_1009_daoru |
| e_user_bk |
| e_user_bk_2 |
| e_user_old |
| new_call |
| new_register_20141016 |
| new_register_bk |
| new_register_bk_2 |
| user_a |
| user_b |
+------------------------------------------------+
Database: UXIN
[27 tables]
+------------------------------------------------+
| user |
| active_user_201305 |
| active_user_201306 |
| free_call_log |
| free_call_log_201211 |
| free
修复方案:
求20rank!
版权声明:转载请注明来源 Ysql404@乌云
漏洞回应
厂商回应:
危害等级:高
漏洞Rank:10
确认时间:2015-06-24 10:48
厂商回复:
危险漏洞,已经安排人员处理
最新状态:
暂无