当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2014-059479

漏洞标题:国泰君安证券分站SQL注入一枚

相关厂商:国泰君安

漏洞作者: sec_jtn

提交时间:2014-05-05 10:47

修复时间:2014-06-19 10:48

公开时间:2014-06-19 10:48

漏洞类型:SQL注射漏洞

危害等级:高

自评Rank:20

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2014-05-05: 细节已通知厂商并且等待厂商处理中
2014-05-05: 厂商已经确认,细节仅向厂商公开
2014-05-15: 细节向核心白帽子及相关领域专家公开
2014-05-25: 细节向普通白帽子公开
2014-06-04: 细节向实习白帽子公开
2014-06-19: 细节向公众公开

简要描述:

国泰君安证券分站sql注入一枚

详细说明:

注入点: http://jxkh.gtja.com/guest/Ask/MyAskList.aspx?QueType=
参数QueType

ja.jpg


ja2.jpg

漏洞证明:

数据库:

ja3.jpg


这表多的下了我一大跳能走一次大厂商?
这只是从m开头的还有a到m的我就不列了
ZL_Magazine
ZL_MailIdiograph
ZL_MailInfo
ZL_MailManage
ZL_MailSet
ZL_MailTemp
ZL_Manager
ZL_Manufacturers
ZL_Map
ZL_MbClass
ZL_MbComment
ZL_MbTheme
ZL_Mbtopic
ZL_Message
ZL_MiUserInfo
ZL_Microb
ZL_Mis
ZL_MisApproval
ZL_MisInfo
ZL_MisProLevel
ZL_MisProcedure
ZL_MisType
ZL_MobilePay
ZL_Model
ZL_ModelField
ZL_MoneyManage
ZL_MuClass
ZL_MuPa
ZL_MuPage
ZL_MuPic
ZL_MuProduct
ZL_MuTemp
ZL_MultiNode
ZL_MySubscription
ZL_NPosition
ZL_NRes_interview
ZL_Node
ZL_NodeBindDroit
ZL_NodeRole
ZL_Node_ModelTemplate
ZL_NovelNVedio
ZL_Online
ZL_OnlineCusServ
ZL_OnlineUsers
ZL_OrderBaseField
ZL_OrderDelivery
ZL_Orderinfo
ZL_P_Book
ZL_P_Shop
ZL_Package
ZL_Page
ZL_PageReg
ZL_PageSign
ZL_PageSkins
ZL_PageStyle
ZL_PageTemplate
ZL_Page_Content
ZL_Page_dianpu
ZL_Page_link
ZL_PaiSecretary
ZL_Paper_Questions
ZL_Papers_System
ZL_Papers_User
ZL_Passenger
ZL_PayPlat
ZL_Payment
ZL_Permission
ZL_Plan
ZL_PlanSql
ZL_PointGrounp
ZL_PointRecord
ZL_PointTrans
ZL_Present
ZL_Print
ZL_PrintMode
ZL_PrintPic
ZL_PrintType
ZL_Process
ZL_Processes
ZL_Program
ZL_Project
ZL_ProjectAffairs
ZL_ProjectBaseField
ZL_ProjectCategory
ZL_ProjectDiscuss
ZL_ProjectField
ZL_ProjectType
ZL_ProjectWork
ZL_Projects
ZL_ProjectsBase
ZL_ProjectsComments
ZL_PromoCount
ZL_Promotion
ZL_Promotions
ZL_Pub
ZL_Pub_GXSZ
ZL_Pub_group
ZL_Pub_personal
ZL_Question
ZL_Questions
ZL_Questions_Class
ZL_Questions_Knowledge
ZL_Questions_Type
ZL_Questions_User
ZL_ReadResume
ZL_RebateOrder
ZL_Rebates
ZL_Recruitment
ZL_RedEnvelope
ZL_Redindulgence
ZL_Reg_Page
ZL_Reg_User
ZL_Regproject
ZL_Regsterapi
ZL_Result
ZL_Role
ZL_RolePermissions
ZL_RoomActive
ZL_RoomActiveJoin
ZL_RoomCall
ZL_RoomInfo
ZL_RoomMessage
ZL_RoomNotify
ZL_RoomUpFile
ZL_RoomUser
ZL_RoomUserGrade
ZL_SNum
ZL_SUser
ZL_S_DFGD
ZL_S_FloClass
ZL_S_FloGoods
ZL_S_FloPack
ZL_S_Flolar
ZL_S_dd
ZL_Scheme
ZL_SchemeInfo
ZL_School
ZL_School_Daren
ZL_ScoreStatics
ZL_Seach
ZL_Search
ZL_SendList
ZL_Sensitivity
ZL_ServiceSeat
ZL_SettlementInfoList
ZL_ShopBrand
ZL_ShopCommentary
ZL_ShopCompete
ZL_ShopGrade
ZL_ShopLable
ZL_ShopNodeinfo
ZL_Shopconfig
ZL_Shopsearch
ZL_Shopsite
ZL_ShopsiteClass
ZL_SiteChild
ZL_SiteInfoXMl
ZL_SitePas
ZL_SitePicAdv
ZL_SiteTextAdv
ZL_Sns_Active
ZL_Sns_ActiveJoin
ZL_Sns_ActivePic
ZL_Sns_ActiveType
ZL_Sns_BlogStyleTable
ZL_Sns_BookTable
ZL_Sns_CarConfig
ZL_Sns_CarLog
ZL_Sns_Carlist
ZL_Sns_ChatLog
ZL_Sns_CollectTable
ZL_Sns_CommendCommentOn
ZL_Sns_CommentAll
ZL_Sns_FileShare
ZL_Sns_GSHuatee
ZL_Sns_GSReverCricicism
ZL_Sns_GSRoom
ZL_Sns_GSType
ZL_Sns_GatherStrain
ZL_Sns_GroupPicCateg
ZL_Sns_HomeCollocate
ZL_Sns_HomeHeadCollocate
ZL_Sns_Kiss
ZL_Sns_Log
ZL_Sns_LogCriticism
ZL_Sns_LookLog
ZL_Sns_LotMessage
ZL_Sns_LotNote
ZL_Sns_Memo
ZL_Sns_Messageboard
ZL_Sns_MyCar
ZL_Sns_MyPose
ZL_Sns_PicCateg
ZL_Sns_PicCritique
ZL_Sns_PicTure
ZL_Sns_ProductTable
ZL_Sns_ProductTypetable
ZL_Sns_ReplayLog
ZL_Sns_Report
ZL_Sns_SystemBannerTable
ZL_Sns_SystemLog
ZL_Sns_UserLog
ZL_Sns_UserLogType
ZL_Sns_UserMoreinfo
ZL_Sns_UserShopProduct
ZL_Sns_User_R_GS
ZL_Sns_User_R_Module
ZL_Sns_blogTable
ZL_Source
ZL_SpecCate
ZL_SpecInfo
ZL_Special
ZL_Sql
ZL_Stock
ZL_StoreStyleTable
ZL_Store_Flower
ZL_Store_sdfsdf
ZL_Store_test
ZL_Structure
ZL_Student
ZL_Subscribe
ZL_SubscriptionCount
ZL_Survey
ZL_Trademark
ZL_URLRewriter
ZL_U_comp
ZL_U_jl
ZL_U_zp
ZL_Ucenter
ZL_UnionInfo
ZL_User
ZL_UserAlipayTable
ZL_UserApp
ZL_UserBank
ZL_UserBase
ZL_UserBaseField
ZL_UserCaritHis
ZL_UserCart
ZL_UserCartPro
ZL_UserClass
ZL_UserCoinHis
ZL_UserCourse
ZL_UserDay
ZL_UserExpDomP
ZL_UserExpHis
ZL_UserFave
ZL_UserFloral
ZL_UserFriendGroup
ZL_UserFriendTable
ZL_UserGrade
ZL_UserGroup
ZL_UserOrderinfo
ZL_UserPromotions
ZL_UserRecei
ZL_UserRegisterIP
ZL_UserRoom
ZL_UserShop
ZL_UserStock
ZL_UserStoreTable
ZL_UserStoreTypeTable
ZL_VJobInfo
ZL_VResume
ZL_VRoom
ZL_ValidityPeriod
ZL_VideoHall
ZL_VideoHouse
ZL_VideoHouseApply
ZL_VideoInfo
ZL_VideoMessage
ZL_VideoRoom
ZL_VideoUser
ZL_VideoUserFriend
ZL_VideoUserGroup
ZL_View
ZL_ViewHistory
ZL_Vinvite
ZL_WapArticle
ZL_WapGolds
ZL_WapNode
ZL_WapOrder
ZL_Wap_Forum_Class
ZL_Wap_Forum_Posts
ZL_Wap_Forum_Replies
ZL_Wiipointscard
ZL_WorkRole
ZL_Zone_Advertisement
ZL_Zone_Node
ZL_Zone_Site
ZL_Zone_question
ZL_page_app
gtjainfo

修复方案:

求个小礼物什么的。

版权声明:转载请注明来源 sec_jtn@乌云


漏洞回应

厂商回应:

危害等级:低

漏洞Rank:3

确认时间:2014-05-05 12:35

厂商回复:

多谢提醒

最新状态:

暂无


漏洞评价:

评论