当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0114463

漏洞标题:大兴汽车官网SQL注入漏洞影响IDC服务商412个库

相关厂商:大兴汽车

漏洞作者: 几何黑店

提交时间:2015-05-18 18:18

修复时间:2015-07-06 19:14

公开时间:2015-07-06 19:14

漏洞类型:SQL注射漏洞

危害等级:高

自评Rank:20

漏洞状态:已交由第三方合作机构(cncert国家互联网应急中心)处理

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2015-05-18: 细节已通知厂商并且等待厂商处理中
2015-05-22: 厂商已经确认,细节仅向厂商公开
2015-06-01: 细节向核心白帽子及相关领域专家公开
2015-06-11: 细节向普通白帽子公开
2015-06-21: 细节向实习白帽子公开
2015-07-06: 细节向公众公开

简要描述:

大兴汽车官网SQL注入漏洞影响IDC服务商412个库

详细说明:

http://www.daihing.com/website/BrandManager.aspx?bid=10
http://www.daihing.com/website/Cars-info.aspx?CarsId=104


参数:bid和CarsId

QQ图片20150516140511.png

漏洞证明:

available databases [412]:
[*] 0ther_szsjms
[*] 3km
[*] 7ien_home_eims_com_cn
[*] 7ien_ShoveGateway_SMS
[*] 7ien_xfcpw
[*] 7ien_xfcpw_bbs
[*] [AEM_49_X?d\x10??]
[*] [aem_sztht?]
[*] [O??_s??ck]
[*] [OEM_cspio.com]
[*] [SD87_tju-sz_DB]
[*] [SD87_welldone-elec_db]
[*] [szbacia.com]
[*] [Test_swt.cn]
[*] [Vip17_mia-mabo]
[*] aspnetdb
[*] BuJiGaoZhong_GuanWang
[*] BuJiGaoZhong_Xiaozhang
[*] DB_0002883
[*] DB_0002884
[*] DB_0002886
[*] DB_0002970
[*] DB_0002975
[*] DB_0003020
[*] DB_0003022
[*] DB_0003049
[*] DB_0003056
[*] DB_0003067
[*] DB_0003094
[*] DB_0003105
[*] DB_0003128
[*] DB_0003129
[*] DB_0003134
[*] DB_0003164
[*] DB_0003214
[*] DB_0003216
[*] DB_0003229
[*] DB_0003247
[*] DB_0003397
[*] DB_0003424
[*] DB_0003425
[*] DB_0003426
[*] DB_0003481
[*] DB_0003482
[*] DB_0003587
[*] DB_0003588
[*] DB_0003606
[*] DB_0003687
[*] DB_0003882
[*] DB_0003883
[*] DB_0003890
[*] DB_0003900
[*] DB_0004499
[*] DB_0004504
[*] DB_0004526
[*] DB_0004540
[*] DB_0004669
[*] DB_0004733
[*] DB_0004782
[*] DB_0004843
[*] DB_0004848
[*] DB_0004849
[*] DB_0004861
[*] DB_0005015
[*] DB_0005122
[*] DB_0005166
[*] DB_0005279
[*] DB_0005297
[*] DB_0005312
[*] DB_0005411
[*] DB_0005600
[*] DB_0005626
[*] DB_0005720
[*] DB_0006588
[*] DB_0006780
[*] DB_0007098
[*] DB_0007729
[*] DB_0007845
[*] DB_0007970
[*] DB_0007972
[*] DB_0008403
[*] DB_0008697
[*] DB_0008987
[*] DB_0009067
[*] DB_0009608
[*] DB_0010955
[*] Demo_kaidongyuan
[*] Demo_mbyy
[*] demo_qianhaiguangdian
[*] Demo_SFS4
[*] Demo_SLS52_JC
[*] Demo_SLS52_shiyong
[*] Demo_SLS5_JC
[*] Demo_SLS5_JC_bbs
[*] Demo_SLS_MHB
[*] Demo_SLS_MHB_bbs
[*] Demo_SLS_Simpleness
[*] Example_OEM_bsdfz
[*] Example_OEM_songping
[*] hessdt134_db
[*] IEN_3km_cc
[*] IEN_eims_cc
[*] IEN_Hospital_DB
[*] KM_qiwang_cn
[*] master
[*] mintaian
[*] Mnls_DB
[*] MnlsOA_DB
[*] model
[*] msdb
[*] OEM
[*] OEM_
[*] OEM_49_Alaili_DB
[*] OEM_49_Ankd_DB
[*] OEM_49_Anluo_DB
[*] OEM_49_Baiqin_DB
[*] OEM_49_BBS_aiqinwan
[*] OEM_49_BBS_eimss
[*] OEM_49_Beian_DB
[*] OEM_49_Bolei_DB
[*] OEM_49_Bsd_DB
[*] OEM_49_BSDFZ
[*] OEM_49_cw6f095_db
[*] OEM_49_Czl_DB
[*] OEM_49_daya
[*] OEM_49_Dyj_DB
[*] OEM_49_Example_Mckin_DB
[*] OEM_49_Exin
[*] OEM_49_Gotop_DB
[*] OEM_49_gzushen
[*] OEM_49_gzwebcn
[*] OEM_49_Hangyun_DB
[*] OEM_49_Hcd_DB
[*] OEM_49_Hcd_DB2
[*] OEM_49_Hcd_DB3
[*] OEM_49_Hcd_DB4
[*] OEM_49_Hcd_DB5
[*] OEM_49_Hl_DB
[*] OEM_49_Htl_DB
[*] OEM_49_Huaxu_DB
[*] OEM_49_Huayao_DB
[*] OEM_49_hx_DB
[*] OEM_49_Hygj_DB
[*] OEM_49_Hyt_DB
[*] OEM_49_jet390
[*] OEM_49_Jiahouse_DB
[*] OEM_49_Jiayu2_DB
[*] OEM_49_Jiayu2_En_DB
[*] OEM_49_Jiayu_DB
[*] OEM_49_Jiayu_En_DB
[*] OEM_49_Julei_DB
[*] OEM_49_Jwp_DB
[*] OEM_49_lwdb
[*] OEM_49_lwdb_en
[*] OEM_49_Mckin_DB
[*] OEM_49_Model_Ghlp_DB
[*] OEM_49_Model_Htl_DB
[*] OEM_49_Model_Huicheng_DB
[*] OEM_49_Model_Prd_DB
[*] OEM_49_Model_Tianqin_DB
[*] OEM_49_Model_Zhaofang_DB
[*] OEM_49_nextar
[*] OEM_49_Nws_DB
[*] OEM_49_Quanlai_DB
[*] OEM_49_Saipu_DB
[*] OEM_49_Shangrong_DB
[*] OEM_49_shimeilan
[*] OEM_49_sq_memberDB
[*] OEM_49_sunsmilebt
[*] OEM_49_Sygx_DB
[*] OEM_49_Syps_en_DB
[*] OEM_49_syxx
[*] OEM_49_szlva123
[*] OEM_49_telecom
[*] OEM_49_trusda_DB
[*] OEM_49_uweimobile
[*] OEM_49_uweimobile2
[*] OEM_49_Xiangya_DB
[*] OEM_49_Xiding_DB
[*] OEM_49_xxsh
[*] OEM_49_Yidu_DB
[*] OEM_49_Yihui_DB
[*] OEM_49_Yuansu_DB
[*] OEM_49_yykj9699
[*] OEM_49_Zhicheng_DB
[*] OEM_49_Zhongde_DB
[*] OEM_49_Zhongmo_DB
[*] OEM_49_zhongtie
[*] OEM_49_zhongtie_model
[*] OEM_49_Zyd_DB
[*] OEM_49_Zyip_DB
[*] OEM_53_chongjibo
[*] OEM_98_ecsmm_DB
[*] OEM_98_huangguandq
[*] OEM_aochuang
[*] OEM_baikouwujin
[*] OEM_Baixin
[*] oem_bbs
[*] OEM_chengtoupaimai
[*] OEM_chezhilv
[*] OEM_chongjibo
[*] OEM_chuangshidatrusda
[*] OEM_chuangweicheng
[*] OEM_cspio
[*] OEM_defengshengshi
[*] OEM_delanzhengchuang
[*] OEM_dongfangzhiben
[*] OEM_dongxun
[*] oem_en_zhicheng
[*] OEM_exin
[*] OEM_feisike
[*] OEM_guangzhong
[*] OEM_gvled
[*] oem_heyijiguang
[*] OEM_hongxingda
[*] OEM_huakaifeng
[*] OEM_Huichuan
[*] OEM_huiwang
[*] OEM_jieman
[*] OEM_Jieneng
[*] OEM_jingshi
[*] OEM_jinjiali
[*] OEM_jinkehai
[*] OEM_jinnuode
[*] OEM_jisiguangyi
[*] OEM_keanxin
[*] OEM_kedinuo
[*] OEM_kehai
[*] OEM_kemaisi
[*] OEM_laobaixing
[*] OEM_Laoyouwang
[*] OEM_leisai
[*] OEM_liguan
[*] OEM_LiRen
[*] OEM_meidao
[*] OEM_ncpio
[*] OEM_ncpio_db
[*] OEM_njpio_db
[*] OEM_NongKeJiTuan
[*] oem_powerday_db
[*] OEM_qiyi
[*] OEM_renhao
[*] OEM_Rongchuang
[*] OEM_saiwate
[*] OEM_Saiwate_Test
[*] OEM_Saiwatecn
[*] OEM_sanhedianli
[*] OEM_Shangpin
[*] OEM_shangsheng
[*] OEM_shengtang
[*] OEM_shixingkai
[*] OEM_shiyuxinda
[*] oem_songping
[*] OEM_songsen
[*] OEM_Sonos
[*] OEM_szgmt_DB
[*] OEM_tairui
[*] OEM_tongmenghui
[*] OEM_tourism
[*] OEM_ttmask
[*] OEM_ttmask_DB
[*] OEM_Vjc_DB
[*] OEM_weixun
[*] OEM_weiyanda
[*] OEM_Weiye
[*] OEM_whpio
[*] OEM_xiangmeng
[*] OEM_xidubense
[*] OEM_xifuzhiquan
[*] OEM_Xinganjue
[*] OEM_xinhuashangzhi
[*] OEM_xinwenyue
[*] OEM_yongheng_DB
[*] OEM_zhaofang
[*] OEM_zhicheng
[*] OEM_Zhinang_DB
[*] OEM_zhongzhi
[*] other_vadcctv
[*] Own_wbe87
[*] S
[*] SD
[*] SD8
[*] SD87
[*] SD87_
[*] SD87_51gree_DB
[*] SD87_chie
[*] SD87_dawo_DB
[*] SD87_DG_Sdw
[*] SD87_dkcam_DB
[*] SD87_dnled_db
[*] SD87_dple
[*] SD87_guofu
[*] SD87_qq
[*] SD87_smgtx_DB
[*] SD87_szakit
[*] SD87_szcaa_DB
[*] SD87_szdfa
[*] SD87_szetn_db
[*] SD87_szfkt_db
[*] SD87_szhyxzs_DB
[*] SD87_szmh123_DB
[*] SD87_szmyidea_db
[*] SD87_szpscpa_db
[*] SD87_szsunying_DB
[*] SD87_szszhengda_db
[*] SD87_sztkpower_DB
[*] SD87_sztpt_DB
[*] SD87_szwhu_DB
[*] SD87_szyifang_DB
[*] SD87_tatsz_DB
[*] SD87_tatszen_db
[*] SD87_tenuos_DB
[*] SD87_tgsz_db
[*] SD87_tiangong
[*] SD87_tianhao_DB
[*] SD87_tpmcn_DB
[*] SD87_Tygd_DB
[*] SD87_tyki_DB
[*] SD87_Unioncf
[*] SD87_Wanghai_DB
[*] SD87_wbe_DB
[*] SD87_xbykj
[*] SD87_xfdfilter_DB
[*] SD87_xttech_DB
[*] SD87_yamazen_DB
[*] SD87_yobabychina_DB
[*] SD87_yongze_DB
[*] SD87_ywpcb_db
[*] SD87_yypz_DB
[*] SD87_yzy_DB
[*] SD87_Zhongankang_DB
[*] SD87_zhydb_DB
[*] SD87_zhymq_db
[*] SD87_zyaclcch_DB
[*] SD87_zyactech_db
[*] SD87_Zygg_DB
[*] SD_
[*] SD_arstech_db
[*] SD_c
[*] SD_ci
[*] SD_maysuncn
[*] SD_ni
[*] SD_qhktf_db
[*] SD_saqcn_DB
[*] sd_sllink
[*] SD_sz
[*] sd_tdtong_DB
[*] sd_youd
[*] SDW_DB
[*] SheShangHui
[*] ShoveEIMS_No1
[*] ShoveEIMS_No2
[*] ShoveEIMS_SDW
[*] ShoveEIMS_SDW_No1
[*] ShoveEIMS_SDW_No2
[*] ShoveIDC
[*] szhomecare_db
[*] tempdb
[*] test1
[*] test_baiqi_DB
[*] Test_Cmax
[*] Test_fankeyu_DB
[*] testszpt
[*] Vip17_BLC_DB
[*] Vip17_Caiyuan_DB
[*] Vip17_calvin
[*] Vip17_coyomocom
[*] Vip17_Deshiding_DB
[*] Vip17_Enlai_DB
[*] Vip17_fdyk_DB
[*] Vip17_feevan_DB
[*] Vip17_fsk_DB
[*] Vip17_GOK_DB
[*] Vip17_gy_DB
[*] Vip17_Hxd_DB
[*] Vip17_HY_DB
[*] Vip17_ictcomhk
[*] Vip17_KangWo_DB
[*] Vip17_Kerm_DB
[*] Vip17_Ldc_DB
[*] Vip17_LdcShop_DB
[*] Vip17_lijie_DB
[*] Vip17_longway
[*] Vip17_Pengyi_DB
[*] Vip17_Putaojiu_DB
[*] Vip17_qqxp
[*] Vip17_Qrjzg_DB
[*] Vip17_Qzjn_DB
[*] Vip17_Shkl_DB
[*] Vip17_sjyy_DB
[*] Vip17_szbssszcom
[*] Vip17_szemdcom
[*] Vip17_szxldhcn
[*] Vip17_szzmcyh
[*] Vip17_tanbo270
[*] Vip17_tangguangxin
[*] Vip17_Tlf_DB
[*] Vip17_Vjc_DB
[*] Vip17_Wesean_DB
[*] Vip17_Xdy_DB
[*] Vip17_xldh_DB
[*] Vip17_xwy_DB
[*] Vip17_Yga_DB
[*] Vip17_Yumi_DB
[*] Vip17_Yurong_DB
[*] Vip17_yzdyf_DB
[*] Vip17_Zhaoli_DB
[*] Vip17_zhongganghong_DB
[*] wbe_db
[*] web335472
[*] xianfengda_db
[*] xinye

修复方案:

你懂的

版权声明:转载请注明来源 几何黑店@乌云


漏洞回应

厂商回应:

危害等级:中

漏洞Rank:10

确认时间:2015-05-22 19:13

厂商回复:

CNVD未直接复现所述漏洞情况,暂未建立与网站管理单位的直接处置渠道,待认领。

最新状态:

暂无


漏洞评价:

评论