当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-095376

漏洞标题:新华网某新闻站点SQL注入(可拖走全网库)

相关厂商:cncert国家互联网应急中心

漏洞作者: BMa

提交时间:2015-02-04 14:14

修复时间:2015-03-21 14:16

公开时间:2015-03-21 14:16

漏洞类型:SQL注射漏洞

危害等级:高

自评Rank:15

漏洞状态:已交由第三方合作机构(cncert国家互联网应急中心)处理

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2015-02-04: 细节已通知厂商并且等待厂商处理中
2015-02-09: 厂商已经确认,细节仅向厂商公开
2015-02-19: 细节向核心白帽子及相关领域专家公开
2015-03-01: 细节向普通白帽子公开
2015-03-11: 细节向实习白帽子公开
2015-03-21: 细节向公众公开

简要描述:

新华网某新闻站点注入(可拖走全网库)
新闻站点,可以发布视频,新闻,照片,被拖走全网库可不好,被插入一些不好的东西也不好
我只证明,这种站,不用getshell也危害相当大

详细说明:

http://zgws.xinhuanet.com/ 中国网事
http://www.zhongguowangshi.com
URL:http://www.zhongguowangshi.com/search.aspx?keyword=&typeid=201
关键字:keyword
直接上图:

1.jpg


2.jpg


3.jpg


4.jpg


5.jpg


6.jpg


附送一份所有库的统计:

Database: zgws_user_db
+------------------------------------------+---------+
| Table                                    | Entries |
+------------------------------------------+---------+
| dbo.user_SceneComment                    | 935684  |
| dbo.v_SceneComment                       | 935684  |
| dbo.v_xwxc_UserList                      | 54675   |
| dbo.user_UserInfo                        | 54673   |
| dbo.user_TaskLog                         | 53891   |
| dbo.Analysis_Milepost                    | 51215   |
| dbo.Analysis_Milepost2                   | 51215   |
| dbo.user_Ranking                         | 30965   |
| dbo.Analysis_reportCity                  | 28250   |
| dbo.Analysis_reportCity2                 | 28247   |
| dbo.user_Register                        | 22437   |
| dbo.user_SceneAttention                  | 20234   |
| dbo.v_user_SceneAttention                | 20234   |
| dbo.user_UserInfo_bak20140428            | 16392   |
| dbo.user_SceneShare                      | 13076   |
| dbo.user_SuggesInfo                      | 5180    |
| dbo.user_XinHuaUserInfo                  | 4162    |
| dbo.Analysis_reportCity_new              | 3534    |
| dbo.user_SceneTrack                      | 2318    |
| dbo.tb_xhsJizhe                          | 2173    |
| dbo.sys_SystemCode_20140428              | 159     |
| dbo.user_AssistingUser                   | 4       |
| dbo.user_SignIn                          | 2       |
+------------------------------------------+---------+
Database: msdb
+------------------------------------------+---------+
| Table                                    | Entries |
+------------------------------------------+---------+
| dbo.backupfile                           | 5746    |
| dbo.backupmediafamily                    | 2873    |
| dbo.backupmediaset                       | 2873    |
| dbo.backupset                            | 2873    |
| dbo.restorefile                          | 27      |
| dbo.syscategories                        | 21      |
| dbo.restorehistory                       | 18      |
| dbo.sysschedules_localserver_view        | 12      |
| dbo.restorefilegroup                     | 9       |
| dbo.sysjobs_view                         | 5       |
| dbo.syspolicy_configuration              | 4       |
+------------------------------------------+---------+
Database: zgws_system_db
+------------------------------------------+---------+
| Table                                    | Entries |
+------------------------------------------+---------+
| dbo.bx_push_position                     | 8475410 |
| dbo.bx_push_position_bak20140916         | 3201177 |
| dbo.sys_TerminalStart                    | 2128311 |
| dbo.sys_ButtonTrack                      | 1038026 |
| dbo.sys_ScenePushPosition                | 995724  |
| dbo.sys_TerminalInstall                  | 350164  |
| dbo.sys_SceneCheckCode                   | 322963  |
| dbo.sys_SceneEquipment                   | 186256  |
| dbo.sys_SystemMessage                    | 119799  |
| dbo.v_SystemMessage                      | 119799  |
| dbo.sys_SceneEquipment_20140403          | 13300   |
| dbo.sys_ProvinceCity                     | 2620    |
| dbo.bx_push_wait                         | 1560    |
| dbo.bx_push_info                         | 669     |
| dbo.sys_SystemCode                       | 323     |
| dbo.v_SystemCode                         | 323     |
| dbo.sys_ScenePush                        | 268     |
| dbo.v_sys_ScenePush                      | 268     |
| dbo.sys_ScenePushWait                    | 251     |
| dbo.sys_ScenePushWait_20140604           | 188     |
| dbo.sys_HotKey                           | 80      |
| dbo.v_HotKey                             | 80      |
| dbo.bx_push_waitToken                    | 55      |
| dbo.sys_VerInfo                          | 42      |
| dbo.v_VersionInfo                        | 42      |
| dbo.sys_RecommendApp                     | 11      |
| dbo.sys_StartImage                       | 5       |
| dbo.sys_pv                               | 4       |
+------------------------------------------+---------+
Database: master
+------------------------------------------+---------+
| Table                                    | Entries |
+------------------------------------------+---------+
| dbo.stat_NewsClicks                      | 12271105 |
| dbo.user_Comment                         | 10126796 |
| dbo.v_user_Comment                       | 10126796 |
| dbo.bx_push_positionInfo                 | 7277373 |
| dbo.stat_NewsClicks_201406               | 4720614 |
| dbo.stat_ChannelDownLoadPv               | 2917748 |
| dbo.bx_push_positionInfo_bak20130520     | 2828435 |
| dbo.stat_ChannelDownLoadApp              | 2798798 |
| dbo.mobileinfo                           | 851639  |
| dbo.stat_NewsClickByDay                  | 687933  |
| dbo.sys_LogInfo                          | 579109  |
| dbo.v_SysLogList                         | 579109  |
| dbo.mobileinfo_channel                   | 542934  |
| dbo.stat_ReportSceneByChannelByDay       | 449432  |
| dbo.bx_push_positionInfo_bak20130620     | 426810  |
| dbo.sys_ProvinceCityWeather_20130123_bak | 265608  |
| dbo.wap_cookieVotes                      | 106057  |
| dbo.stat_Data_Install_Channel            | 105613  |
| dbo.sys_Locking                          | 100122  |
| dbo.v_SysLocking                         | 84980   |
| dbo.cms_NewsOrLatticeInfo                | 82604   |
| dbo.v_newslist_pc                        | 82604   |
| dbo.v_cms_NewsInfo                       | 82502   |
| dbo.v_cms_NewsOrLatticeInfoList          | 82192   |
| dbo.cms_AtlasImage                       | 79826   |
| dbo.v_cms_AtlasImage                     | 79826   |
| dbo.v_NewsInfoList                       | 78243   |
| dbo.cms_News                             | 78124   |
| dbo.v_cms_NewsContent                    | 78124   |
| dbo.stat_AtlasClickByDay                 | 78062   |
| dbo.v_cms_NewsType                       | 77795   |
| dbo.v_cms_NewsInfoList                   | 76459   |
| dbo.stat_Data_Installation               | 74459   |
| dbo.user_Comment_bak_20130621            | 74107   |
| dbo.v_cms_NewsDetailsInfo                | 70197   |
| dbo.bx_push_equipmentInfo                | 66021   |
| dbo.bx_push_equipmentInfo_bak20140227    | 56639   |
| dbo.wap_SysAdmDbSession                  | 48819   |
| dbo.wap_SysAdmLoginLog                   | 48819   |
| dbo.stat_NewsClicksBySite                | 48046   |
| dbo.stat_ThemeProgramClickByDay          | 45806   |
| dbo.StatWebDownloadClicksByDay           | 37784   |
| dbo.mobileinfo_bak20121126               | 27750   |
| dbo.log_ThesceneCommon                   | 20862   |
| dbo.v_log_ThesceneCommon                 | 20154   |
| dbo.cms_news_bak20130516                 | 19466   |
| dbo.cms_ThesceneComment                  | 15324   |
| dbo.v_cms_ThesceneComment                | 15324   |
| dbo.v_TheCommentCreateXML                | 15312   |
| dbo.quick_VoteRandLog                    | 13680   |
| dbo.stat_BillBoardClickByDay             | 13001   |
| dbo.user_UserInfo_Temp                   | 12820   |
| dbo.user_UserInfo                        | 12058   |
| dbo.stat_Web_Mobile_Channel              | 10377   |
| dbo.StatWebInstallation                  | 9633    |
| dbo.cms_Atlas                            | 8929    |
| dbo.v_cms_Atlas                          | 8929    |
| dbo.stat_ReportAtlasByDay                | 8661    |
| dbo.v_stat_ReportAtlasByDay              | 8661    |
| dbo.StatWebRealTimeClick                 | 4667    |
| dbo.Stat_TopSecenClickByMonth            | 3720    |
| dbo.stat_ReportSceneByDay                | 3715    |
| dbo.v_stat_ReportSceneByDay              | 3715    |
| dbo.userinfo                             | 2914    |
| dbo.Stat_TopNewsClickByMonth             | 2806    |
| dbo.sys_ProvinceCity                     | 2620    |
| dbo.cms_ThemeOfProgram                   | 2276    |
| dbo.v_ThemeNewsList                      | 2276    |
| dbo.v_cms_ThemeProgram                   | 2151    |
| dbo.bx_push_waitInfo                     | 1730    |
| dbo.bx_push_newsInfo                     | 1674    |
| dbo.stat_Web_Mobile_Start                | 1648    |
| dbo.stat_ThemeClickByDay                 | 1598    |
| dbo.quick_Adver                          | 1465    |
| dbo.v_AdvList                            | 1465    |
| dbo.cms_BillBoard                        | 1350    |
| dbo.v_cms_BillBoard                      | 1350    |
| dbo.cms_BillBoardRelationship            | 1193    |
| dbo.user_Bid                             | 972     |
| dbo.wap_SysRoleScriptRelation            | 946     |
| dbo.quick_VoteRand                       | 900     |
| dbo.user_Sugges                          | 753     |
| dbo.v_user_Sugges                        | 753     |
| dbo.cms_BillBoard_bak20130516            | 746     |
| dbo.sce_NewsScene_20140408               | 731     |
| dbo.StatWebEditorAssessment              | 624     |
| dbo.stat_LatticeClickByMonth             | 623     |
| dbo.stat_AuthorClickByMonth              | 462     |
| dbo.v_SysBaseType                        | 429     |
| dbo.wap_SysBaseType                      | 429     |
| dbo.cms_theme_micro_comment              | 405     |
| dbo.v_cms_theme_micro_comment            | 405     |
| dbo.v_user_Bid                           | 402     |
| dbo.stat_SecenOperLog                    | 339     |
| dbo.cms_Thescene                         | 315     |
| dbo.v_cms_Thescene                       | 315     |
| dbo.cms_News_Video                       | 311     |
| dbo.v_SysAdminInfo                       | 299     |
| dbo.wap_SysAdminList                     | 299     |
| dbo.quick_StartImage                     | 263     |
| dbo.v_quick_StartImage                   | 263     |
| dbo.user_BidImage                        | 238     |
| dbo.v_user_BidImage                      | 238     |
| dbo.v_sysScriptInfo                      | 187     |
| dbo.wap_SysScript                        | 187     |
| dbo.v_getScriptList                      | 180     |
| dbo.stat_AuthorSceneClickByMonth         | 168     |
| dbo.quick_Lattice                        | 132     |
| dbo.quick_Lattice_20140609               | 122     |
| dbo.wap_SiteMessagePush                  | 110     |
| dbo.cms_Theme                            | 72      |
| dbo.v_cms_ThemeInfo                      | 71      |
| dbo.theme_yatai_news                     | 63      |
| dbo.cms_theme_micro_baseInfo             | 45      |
| dbo.stat_LatticeClickByDay               | 45      |
| dbo.cms_theme_micro_filmInfo             | 44      |
| dbo.v_cms_theme_micro_filmInfo           | 44      |
| dbo.WorkOrder_Order                      | 38      |
| dbo.pay_SendForLog                       | 30      |
| dbo.WorkOrder_OrderProc                  | 29      |
| dbo.sys_WeatherCity                      | 28      |
| dbo.stat_ReportByDay                     | 26      |
| dbo.v_stat_ReportByDay                   | 26      |
| dbo.adv_baoming                          | 25      |
| dbo.theme_yatai_persons                  | 23      |
| dbo.v_SysRoleInfo                        | 20      |
| dbo.wap_SysRole                          | 20      |
| dbo.sys_Attribute                        | 17      |
| dbo.cms_CommentToComment                 | 14      |
| dbo.user_RaterInfo                       | 14      |
| dbo.v_cms_commenttocomment               | 14      |
| dbo.bx_Channel                           | 12      |
| dbo.stat_DownLoadByHour                  | 12      |
| dbo.cms_BillBoardPeriod                  | 9       |
| dbo.v_cms_BillBoardPeriod                | 9       |
| dbo.cms_ThesceneCommentContent           | 8       |
| dbo.v_cms_ThesceneCommentContent         | 8       |
| dbo.sys_Resolution                       | 7       |
| dbo.cms_FilmInfo                         | 6       |
| dbo.cms_theme_micro_newsInfo             | 6       |
| dbo.sys_AttributeOfNews                  | 6       |
| dbo.sys_CheckVersionInfo                 | 6       |
| dbo.cms_ReporterInter                    | 4       |
| dbo.quick_NewsType                       | 4       |
| dbo.v_cms_ReporterInter                  | 4       |
| dbo.pay_SendFor                          | 3       |
| dbo.quick_SensitiveWordsInfo             | 3       |
| dbo.sys_FtpInfo                          | 3       |
| dbo.bx_wap_aboutus                       | 1       |
| dbo.myview                               | 1       |
| dbo.stat_Web_Installation                | 1       |
+------------------------------------------+---------+
Database: xinhuacms
+------------------------------------------+---------+
| Table                                    | Entries |
+------------------------------------------+---------+
| dbo.stat_NewsClicks                      | 12271163 |
| dbo.user_Comment                         | 10126796 |
| dbo.v_user_Comment                       | 10126796 |
| dbo.bx_push_positionInfo                 | 7277373 |
| dbo.stat_NewsClicks_201406               | 4720614 |
| dbo.stat_ChannelDownLoadPv               | 2917749 |
| dbo.bx_push_positionInfo_bak20130520     | 2828435 |
| dbo.stat_ChannelDownLoadApp              | 2798799 |
| dbo.mobileinfo                           | 851639  |
| dbo.stat_NewsClickByDay                  | 687933  |
| dbo.sys_LogInfo                          | 579109  |
| dbo.v_SysLogList                         | 579109  |
| dbo.mobileinfo_channel                   | 542934  |
| dbo.stat_ReportSceneByChannelByDay       | 449432  |
| dbo.bx_push_positionInfo_bak20130620     | 426810  |
| dbo.sys_ProvinceCityWeather_20130123_bak | 265608  |
| dbo.wap_cookieVotes                      | 106057  |
| dbo.stat_Data_Install_Channel            | 105613  |
| dbo.sys_Locking                          | 100122  |
| dbo.v_SysLocking                         | 84980   |
| dbo.cms_NewsOrLatticeInfo                | 82604   |
| dbo.v_newslist_pc                        | 82604   |
| dbo.v_cms_NewsInfo                       | 82502   |
| dbo.v_cms_NewsOrLatticeInfoList          | 82192   |
| dbo.cms_AtlasImage                       | 79826   |
| dbo.v_cms_AtlasImage                     | 79826   |
| dbo.v_NewsInfoList                       | 78243   |
| dbo.cms_News                             | 78124   |
| dbo.v_cms_NewsContent                    | 78124   |
| dbo.stat_AtlasClickByDay                 | 78062   |
| dbo.v_cms_NewsType                       | 77795   |
| dbo.v_cms_NewsInfoList                   | 76459   |
| dbo.stat_Data_Installation               | 74459   |
| dbo.user_Comment_bak_20130621            | 74107   |
| dbo.v_cms_NewsDetailsInfo                | 70197   |
| dbo.bx_push_equipmentInfo                | 66021   |
| dbo.bx_push_equipmentInfo_bak20140227    | 56639   |
| dbo.wap_SysAdmDbSession                  | 48819   |
| dbo.wap_SysAdmLoginLog                   | 48819   |
| dbo.stat_NewsClicksBySite                | 48048   |
| dbo.stat_ThemeProgramClickByDay          | 45806   |
| dbo.StatWebDownloadClicksByDay           | 37784   |
| dbo.mobileinfo_bak20121126               | 27750   |
| dbo.log_ThesceneCommon                   | 20862   |
| dbo.v_log_ThesceneCommon                 | 20154   |
| dbo.cms_news_bak20130516                 | 19466   |
| dbo.cms_ThesceneComment                  | 15324   |
| dbo.v_cms_ThesceneComment                | 15324   |
| dbo.v_TheCommentCreateXML                | 15312   |
| dbo.quick_VoteRandLog                    | 13680   |
| dbo.stat_BillBoardClickByDay             | 13001   |
| dbo.user_UserInfo_Temp                   | 12820   |
| dbo.user_UserInfo                        | 12058   |
| dbo.stat_Web_Mobile_Channel              | 10377   |
| dbo.StatWebInstallation                  | 9633    |
| dbo.cms_Atlas                            | 8929    |
| dbo.v_cms_Atlas                          | 8929    |
| dbo.stat_ReportAtlasByDay                | 8661    |
| dbo.v_stat_ReportAtlasByDay              | 8661    |
| dbo.StatWebRealTimeClick                 | 4667    |
| dbo.Stat_TopSecenClickByMonth            | 3720    |
| dbo.stat_ReportSceneByDay                | 3715    |
| dbo.v_stat_ReportSceneByDay              | 3715    |
| dbo.userinfo                             | 2914    |
| dbo.Stat_TopNewsClickByMonth             | 2806    |
| dbo.sys_ProvinceCity                     | 2620    |
| dbo.cms_ThemeOfProgram                   | 2276    |
| dbo.v_ThemeNewsList                      | 2276    |
| dbo.v_cms_ThemeProgram                   | 2151    |
| dbo.bx_push_waitInfo                     | 1730    |
| dbo.bx_push_newsInfo                     | 1674    |
| dbo.stat_Web_Mobile_Start                | 1648    |
| dbo.stat_ThemeClickByDay                 | 1598    |
| dbo.quick_Adver                          | 1465    |
| dbo.v_AdvList                            | 1465    |
| dbo.cms_BillBoard                        | 1350    |
| dbo.v_cms_BillBoard                      | 1350    |
| dbo.cms_BillBoardRelationship            | 1193    |
| dbo.user_Bid                             | 972     |
| dbo.wap_SysRoleScriptRelation            | 946     |
| dbo.quick_VoteRand                       | 900     |
| dbo.user_Sugges                          | 753     |
| dbo.v_user_Sugges                        | 753     |
| dbo.cms_BillBoard_bak20130516            | 746     |
| dbo.sce_NewsScene_20140408               | 731     |
| dbo.StatWebEditorAssessment              | 624     |
| dbo.stat_LatticeClickByMonth             | 623     |
| dbo.stat_AuthorClickByMonth              | 462     |
| dbo.v_SysBaseType                        | 429     |
| dbo.wap_SysBaseType                      | 429     |
| dbo.cms_theme_micro_comment              | 405     |
| dbo.v_cms_theme_micro_comment            | 405     |
| dbo.v_user_Bid                           | 402     |
| dbo.stat_SecenOperLog                    | 339     |
| dbo.cms_Thescene                         | 315     |
| dbo.v_cms_Thescene                       | 315     |
| dbo.cms_News_Video                       | 311     |
| dbo.v_SysAdminInfo                       | 299     |
| dbo.wap_SysAdminList                     | 299     |
| dbo.quick_StartImage                     | 263     |
| dbo.v_quick_StartImage                   | 263     |
| dbo.user_BidImage                        | 238     |
| dbo.v_user_BidImage                      | 238     |
| dbo.v_sysScriptInfo                      | 187     |
| dbo.wap_SysScript                        | 187     |
| dbo.v_getScriptList                      | 180     |
| dbo.stat_AuthorSceneClickByMonth         | 168     |
| dbo.quick_Lattice                        | 132     |
| dbo.quick_Lattice_20140609               | 122     |
| dbo.wap_SiteMessagePush                  | 110     |
| dbo.cms_Theme                            | 72      |
| dbo.v_cms_ThemeInfo                      | 71      |
| dbo.theme_yatai_news                     | 63      |
| dbo.cms_theme_micro_baseInfo             | 45      |
| dbo.stat_LatticeClickByDay               | 45      |
| dbo.cms_theme_micro_filmInfo             | 44      |
| dbo.v_cms_theme_micro_filmInfo           | 44      |
| dbo.WorkOrder_Order                      | 38      |
| dbo.pay_SendForLog                       | 30      |
| dbo.WorkOrder_OrderProc                  | 29      |
| dbo.sys_WeatherCity                      | 28      |
| dbo.stat_ReportByDay                     | 26      |
| dbo.v_stat_ReportByDay                   | 26      |
| dbo.adv_baoming                          | 25      |
| dbo.theme_yatai_persons                  | 23      |
| dbo.v_SysRoleInfo                        | 20      |
| dbo.wap_SysRole                          | 20      |
| dbo.sys_Attribute                        | 17      |
| dbo.cms_CommentToComment                 | 14      |
| dbo.user_RaterInfo                       | 14      |
| dbo.v_cms_commenttocomment               | 14      |
| dbo.bx_Channel                           | 12      |
| dbo.stat_DownLoadByHour                  | 12      |
| dbo.cms_BillBoardPeriod                  | 9       |
| dbo.v_cms_BillBoardPeriod                | 9       |
| dbo.cms_ThesceneCommentContent           | 8       |
| dbo.v_cms_ThesceneCommentContent         | 8       |
| dbo.sys_Resolution                       | 7       |
| dbo.cms_FilmInfo                         | 6       |
| dbo.cms_theme_micro_newsInfo             | 6       |
| dbo.sys_AttributeOfNews                  | 6       |
| dbo.sys_CheckVersionInfo                 | 6       |
| dbo.cms_ReporterInter                    | 4       |
| dbo.quick_NewsType                       | 4       |
| dbo.v_cms_ReporterInter                  | 4       |
| dbo.pay_SendFor                          | 3       |
| dbo.quick_SensitiveWordsInfo             | 3       |
| dbo.sys_FtpInfo                          | 3       |
| dbo.bx_wap_aboutus                       | 1       |
| dbo.myview                               | 1       |
| dbo.stat_Web_Installation                | 1       |
+------------------------------------------+---------+
Database: zgws_scene_db
+------------------------------------------+---------+
| Table                                    | Entries |
+------------------------------------------+---------+
| dbo.stat_NewsClicks_0718                 | 1523895 |
| dbo.sce_ReportVoteClick                  | 318365  |
| dbo.sce_NewsSceneReportOperLog           | 170893  |
| dbo.v_NewsSceneReport                    | 115467  |
| dbo.v_SceneReportByClient                | 115433  |
| dbo.sce_NewsSceneReport                  | 115416  |
| dbo.v_SceneReportByClient_old            | 115416  |
| dbo.v_SceneReportByClient_online         | 115416  |
| dbo.sce_NewsSceneVideo                   | 107123  |
| dbo.sce_NewsSceneImage                   | 87194   |
| dbo.sce_NewsSceneReport_20141020         | 81353   |
| dbo.sce_NewsSceneImage_11232119          | 75023   |
| dbo.sce_NewsSceneReport_20140813         | 54592   |
| dbo.sce_NewsSceneOperLog                 | 21530   |
| dbo.sce_NewsSceneImage_tmp               | 16877   |
| dbo.sce_NewsSceneExpand                  | 8404    |
| dbo.v_NewsSceneByClient_old              | 8400    |
| dbo.v_NewsSceneByClient_online           | 8400    |
| dbo.sce_NewsScene                        | 8398    |
| dbo.v_NewsScene                          | 8398    |
| dbo.v_NewsSceneByClient                  | 8398    |
| dbo.v_NewsSceneDetailByClient            | 8398    |
| dbo.sce_NewsSceneImage_11230903          | 6725    |
| dbo.sce_NewsScene_20141020               | 5567    |
| dbo.sce_NewsSceneOperLog_0717            | 5361    |
| dbo.sce_NewsSceneExpand_0904             | 4108    |
| dbo.v_XinhuaSceneAll                     | 3948    |
| dbo.[sce_NewsSceneImage-1]               | 3905    |
| dbo.sce_NewsSceneImage_20140814          | 3895    |
| dbo.sce_NewsSceneExpand_0818             | 3632    |
| dbo.sce_NewsSceneExpand_0817             | 3631    |
| dbo.stst_total                           | 111     |
| dbo.stst_pic                             | 94      |
| dbo.stst_txt                             | 69      |
| dbo.sce_NewsSceneSpan                    | 52      |
| dbo.sce_SceneTheme                       | 5       |
| dbo.sce_SeoInfo                          | 5       |
+------------------------------------------+---------+
Database: zgws_chat_db
+------------------------------------------+---------+
| Table                                    | Entries |
+------------------------------------------+---------+
| dbo.chat_RoomInto                        | 2599    |
+------------------------------------------+---------+


漏洞证明:

危害我不多说

修复方案:

版权声明:转载请注明来源 BMa@乌云

漏洞回应

厂商回应:

危害等级:高

漏洞Rank:11

确认时间:2015-02-09 11:00

厂商回复:

CNVD确认并复现所述情况,已经转由CNCERT向新华社技术局通报,由其后续协助调网站管理单位处置。

最新状态:

暂无

漏洞评价:

评论

  1. 2015-02-04 14:45 | RainShine ( 路人 | Rank:2 漏洞数:4 )

    CCTV的记者同志请看这里!我在这里!拍我!