当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2014-067641

漏洞标题:郑州大学某站SQL注入

相关厂商:郑州大学

漏洞作者: 路人甲

提交时间:2014-07-09 15:02

修复时间:2014-08-23 15:04

公开时间:2014-08-23 15:04

漏洞类型:SQL注射漏洞

危害等级:低

自评Rank:5

漏洞状态:已交由第三方合作机构(CCERT教育网应急响应组)处理

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2014-07-09: 细节已通知厂商并且等待厂商处理中
2014-07-10: 厂商已经确认,细节仅向厂商公开
2014-07-20: 细节向核心白帽子及相关领域专家公开
2014-07-30: 细节向普通白帽子公开
2014-08-09: 细节向实习白帽子公开
2014-08-23: 细节向公众公开

简要描述:

其实没什么好说的.也就是SQL

详细说明:

http://www12.zzu.edu.cn/ie/details.php?newsType=2&newsId=624 注入点
|pcie_sso_settings |
| pcie_template_bak |
| pcie_times |
| pcie_type |
| pcie_urlrule |
| pcie_workflow |
| phpcmsadmin |
| phpcmsadmin_panel |
| phpcmsadmin_role |
| phpcmsadmin_role_priv |
| phpcmsattachment |
| phpcmsattachment_index |
| phpcmsbadword |
| phpcmsblock |
| phpcmsblock_history |
| phpcmsblock_priv |
| phpcmscache |
| phpcmscategory |
| phpcmscategory_priv |
| phpcmscollection_content |
| phpcmscollection_history |
| phpcmscollection_node |
| phpcmscollection_program |
| phpcmscontent_check |
| phpcmscopyfrom |
| phpcmsdatacall |
| phpcmsdbsource |
| phpcmsdownload |
| phpcmsdownload_data |
| phpcmsdownservers |
| phpcmsextend_setting |
| phpcmsfavorite |
| phpcmshits |
| phpcmsipbanned |
| phpcmskeylink |
| phpcmslinkage |
| phpcmslog |
| phpcmsmember |
| phpcmsmember_detail |
| phpcmsmember_group |
| phpcmsmember_menu |
| phpcmsmember_verify |
| phpcmsmember_vip |
| phpcmsmenu |
| phpcmsmodel |
| phpcmsmodel_field |
| phpcmsmodule |
| phpcmsnews |
| phpcmsnews_data |
| phpcmspage |
| phpcmspay_account |
| phpcmspay_payment |
| phpcmspay_spend |
| phpcmspicture |
| phpcmspicture_data |
| phpcmsplugin |
| phpcmsplugin_var |
| phpcmsposition |
| phpcmsposition_data |
| phpcmsqueue |
| phpcmsrelease_point |
| phpcmssearch |
| phpcmssearch_keyword |
| phpcmssession |
| phpcmssite |
| phpcmsspecial |
| phpcmsspecial_c_data |
| phpcmsspecial_content |
| phpcmssphinx_counter |
| phpcmssso_admin |
| phpcmssso_applications |
| phpcmssso_members |
| phpcmssso_messagequeue |
| phpcmssso_session |
| phpcmssso_settings |
| phpcmstemplate_bak |
| phpcmstimes |
| phpcmstype |
| phpcmsurlrule |
| phpcmsworkflow |
| rsadmin |
| rsadmin_panel |
| rsadmin_role |
| rsadmin_role_priv |
| rsattachment |
| rsattachment_index |
| rsbadword |
| rsblock |
| rsblock_history |
| rsblock_priv |
| rscache |
| rscategory |
| rscategory_priv |
| rscollection_content |
| rscollection_history |
| rscollection_node |
| rscollection_program |
| rscontent_check |
| rscopyfrom |
| rsdatacall |
| rsdbsource |
| rsdownload |
| rsdownload_data |
| rsdownservers |
| rsextend_setting |
| rsfavorite |
| rshits |
| rsipbanned |
| rskeylink |
| rslinkage |
| rslog |
| rsmember |
| rsmember_detail |
| rsmember_group |
| rsmember_menu |
| rsmember_verify |
| rsmember_vip |
| rsmenu |
| rsmodel |
| rsmodel_field |
| rsmodule |
| rsnews |
| rsnews_data |
| vote_attachment |
| vote_attachment_index |
| vote_badword |
| vote_block |
| vote_block_history |
| vote_block_priv |
| vote_cache |
| vote_category |
| vote_category_priv |
| vote_collection_content |
| vote_collection_history |
| vote_collection_node |
| vote_collection_program |
| vote_content_check |
| vote_copyfrom |
| vote_datacall |
| vote_dbsource |
| vote_download |
| vote_download_data |
| vote_downservers |
| vote_extend_setting |
| vote_favorite |
| vote_hits |
| vote_ipbanned |
| vote_keylink |
| vote_linkage |
| vote_log |
| vote_member |
| vote_member_detail |
| vote_member_group |
| vote_member_menu |
| vote_member_verify |
| vote_member_vip |
| vote_menu |
| vote_model |
| vote_model_field |
| vote_module |
| vote_news |
| vote_news_data |
| vote_page |
| vote_pay_account |
| vote_pay_payment |
| vote_pay_spend |
| vote_picture |
| vote_picture_data |
| vote_plugin |
| vote_plugin_var |
| vote_position |
| vote_position_data |
| vote_queue |
| vote_release_point |
| vote_search |
| vote_search_keyword |
| vote_session |
| vote_site |
| vote_special |
| vote_special_c_data |
| vote_special_content |
| vote_sphinx_counter |
| vote_sso_admin |
| vote_sso_applications |
| vote_sso_members |
| vote_sso_messagequeue |
| vote_sso_session |
| vote_sso_settings |
| vote_template_bak |
| vote_times |
| vote_type |
| vote_urlrule |
| vote_video |
| vote_video_content |
| vote_video_data |
| vote_video_store |
| vote_workflow |
| write_book |
| zzuie_admin |
| zzuie_admin_panel |
| zzuie_admin_role |
| zzuie_admin_role_priv |
| zzuie_announce |
| zzuie_attachment |
| zzuie_attachment_index |
| zzuie_badword |
| zzuie_block |
| zzuie_block_history |
| zzuie_block_priv |
| zzuie_cache |
| zzuie_category |
| zzuie_category_priv |
| zzuie_collection_content |
| zzuie_collection_history |
| zzuie_collection_node |
| zzuie_collection_program |
| zzuie_comment |
| zzuie_comment_check |
| zzuie_comment_data_1 |
| zzuie_comment_setting |
| zzuie_comment_table |
| zzuie_content_check |
| zzuie_copyfrom |
| zzuie_datacall |
| zzuie_dbsource |
| zzuie_download |
| zzuie_download_data |
| zzuie_downservers |
| zzuie_extend_setting |
| zzuie_favorite |
| zzuie_hits |
| zzuie_ipbanned |
| zzuie_keylink |
| zzuie_link |
| zzuie_linkage |
| zzuie_log |
| zzuie_member |
| zzuie_member_detail |
| zzuie_member_group |
| zzuie_member_menu |
| zzuie_member_verify |
| zzuie_member_vip |
| zzuie_menu |
| zzuie_message |
| zzuie_message_data |
| zzuie_message_group |
| zzuie_model |
| zzuie_model_field |
| zzuie_module |
| zzuie_mood |
| zzuie_news |
| zzuie_news_data |
| zzuie_page |
| zzuie_pay_account |
| zzuie_pay_payment |
| zzuie_pay_spend |
| zzuie_picture |
| zzuie_picture_data |
| zzuie_plugin |
| zzuie_plugin_var |
| zzuie_position |
| zzuie_position_data |
| zzuie_poster |
| zzuie_poster_space |
| zzuie_queue |
| zzuie_release_point |
| zzuie_search |
| zzuie_search_keyword |
| zzuie_session |
| zzuie_site |
| zzuie_special |
| zzuie_special_c_data |
| zzuie_special_content |
| zzuie_sphinx_counter |
| zzuie_sso_admin |
| zzuie_sso_applications |
| zzuie_sso_members |
| zzuie_sso_messagequeue |
| zzuie_sso_session |
| zzuie_sso_settings |
| zzuie_tag |
| zzuie_template_bak |
| zzuie_times |
| zzuie_type |
| zzuie_urlrule |
| zzuie_vote_data |
| zzuie_vote_option |
| zzuie_vote_subject |
| zzuie_wap |
| zzuie_wap_type |
| zzuie_workflow |
+------------------------------+
太多表了,上个胡萝卜的

.jpg

漏洞证明:

.jpg

http://www12.zzu.edu.cn/ie/admin/ 后台

修复方案:

你们比我专业

版权声明:转载请注明来源 路人甲@乌云


漏洞回应

厂商回应:

危害等级:中

漏洞Rank:6

确认时间:2014-07-10 14:50

厂商回复:

已通知相关学校处理

最新状态:

暂无


漏洞评价:

评论