当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-096383

漏洞标题:某政府在用系统存在一处PSOT型SQL注入

相关厂商:山东农友软件公司

漏洞作者: 路人甲

提交时间:2015-02-13 15:27

修复时间:2015-05-18 08:24

公开时间:2015-05-18 08:24

漏洞类型:SQL注射漏洞

危害等级:高

自评Rank:20

漏洞状态:已交由第三方合作机构(cncert国家互联网应急中心)处理

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2015-02-13: 细节已通知厂商并且等待厂商处理中
2015-02-17: 厂商已经确认,细节仅向厂商公开
2015-02-20: 细节向第三方安全合作伙伴开放
2015-04-13: 细节向核心白帽子及相关领域专家公开
2015-04-23: 细节向普通白帽子公开
2015-05-03: 细节向实习白帽子公开
2015-05-18: 细节向公众公开

简要描述:

rt

详细说明:

问题厂商:山东农友软件公司
用户量:大
影响:广
注入点 :ExtWebModels/WebManage/NewsClass.aspx
google关键字:inurl:ExtWebModels/WebManage/NewsClass.aspx
测试案例:
http://60.2.214.118:8088/ExtWebModels/WebManage/NewsClass.aspx

http://121.17.2.52/ExtWebModels/WebManage/NewsClass.aspx
http://rctdlz.cn/ExtWebModels/WebManage/NewsClass.aspx
http://221.1.104.11:8011/ExtWebModels/WebManage/NewsClass.aspx
http://61.186.154.210:8088/ExtWebModels/WebManage/NewsClass.aspx
http://demo.inongyou.cn/ExtWebModels/WebManage/NewsClass.aspx
http://221.2.171.59:8300/ExtWebModels/WebManage/NewsClass.aspx

漏洞证明:

http://221.2.171.59:8300/ExtWebModels/WebManage/NewsClass.aspx __EVENTTARGET=&__EVENTARGUMENT=&__VIEWSTATE=%2FwEPDwUKMTY0Mjk5MzAyOA9kFgICAw9kFgQCBQ8PZBYCHgdvbmNsaWNrBRVyZXR1cm4gQ2hlY2tTdWJtaXQoKTtkAgcPPCsADQEADxYEHgtfIURhdGFCb3VuZGceC18hSXRlbUNvdW50AsUCZBYCZg9kFhgCAQ9kFgZmDw8WAh4EVGV4dAUBMWRkAgEPDxYCHwMFDOWGhemDqOmAmuefpWRkAgMPZBYCAgEPDxYCHg9Db21tYW5kQXJndW1lbnQFBjEwMDAwMRYCHwAFP2phdmFzY3JpcHQ6cmV0dXJuIGNvbmZpcm0oJ%2BaCqOehruWumumcgOimgeWIoOmZpOKAnDHigJ3lkJfvvJ8nKWQCAg9kFgZmDw8WAh8DBQEyZGQCAQ8PFgIfAwUM6YCa55%2Bl5YWs5ZGKZGQCAw9kFgICAQ8PFgIfBAUGMTAwMDAyFgIfAAU%2FamF2YXNjcmlwdDpyZXR1cm4gY29uZmlybSgn5oKo56Gu5a6a6ZyA6KaB5Yig6Zmk4oCcMuKAneWQl%2B%2B8nycpZAIDD2QWBmYPDxYCHwMFATNkZAIBDw8WAh8DBQzmg6DlhpzmlL%2FnrZZkZAIDD2QWAgIBDw8WAh8EBQYxMDAwMDUWAh8ABT9qYXZhc2NyaXB0OnJldHVybiBjb25maXJtKCfmgqjnoa7lrprpnIDopoHliKDpmaTigJwz4oCd5ZCX77yfJylkAgQPZBYGZg8PFgIfAwUBNGRkAgEPDxYCHwMFDOa1gei9rOWKqOaAgWRkAgMPZBYCAgEPDxYCHwQFBjEwMDAwNhYCHwAFP2phdmFzY3JpcHQ6cmV0dXJuIGNvbmZpcm0oJ%2BaCqOehruWumumcgOimgeWIoOmZpOKAnDTigJ3lkJfvvJ8nKWQCBQ9kFgZmDw8WAh8DBQE2ZGQCAQ8PFgIfAwUM5a6D5bGx5LmL55%2BzZGQCAw9kFgICAQ8PFgIfBAUGMTAwMDA3FgIfAAU%2FamF2YXNjcmlwdDpyZXR1cm4gY29uZmlybSgn5oKo56Gu5a6a6ZyA6KaB5Yig6Zmk4oCcNuKAneWQl%2B%2B8nycpZAIGD2QWBmYPDxYCHwMFATdkZAIBDw8WAh8DBQzlm77niYfmlrDpl7tkZAIDD2QWAgIBDw8WAh8EBQYxMDAwMTIWAh8ABT9qYXZhc2NyaXB0OnJldHVybiBjb25maXJtKCfmgqjnoa7lrprpnIDopoHliKDpmaTigJw34oCd5ZCX77yfJylkAgcPZBYGZg8PFgIfAwUBM2RkAgEPDxYCHwMFDOWcsOaWueazleinhGRkAgMPZBYCAgEPDxYCHwQFBjEwMDAwNBYCHwAFP2phdmFzY3JpcHQ6cmV0dXJuIGNvbmZpcm0oJ%2BaCqOehruWumumcgOimgeWIoOmZpOKAnDPigJ3lkJfvvJ8nKWQCCA9kFgZmDw8WAh8DBQEzZGQCAQ8PFgIfAwUM5Zu95a625rOV5b6LZGQCAw9kFgICAQ8PFgIfBAUGMTAwMDAzFgIfAAU%2FamF2YXNjcmlwdDpyZXR1cm4gY29uZmlybSgn5oKo56Gu5a6a6ZyA6KaB5Yig6Zmk4oCcM%2BKAneWQl%2B%2B8nycpZAIJD2QWBmYPDxYCHwMFATZkZAIBDw8WAh8DBQzkuJrlhoXop4LngrlkZAIDD2QWAgIBDw8WAh8EBQYxMDAwMDkWAh8ABT9qYXZhc2NyaXB0OnJldHVybiBjb25maXJtKCfmgqjnoa7lrprpnIDopoHliKDpmaTigJw24oCd5ZCX77yfJylkAgoPZBYGZg8PFgIfAwUBNWRkAgEPDxYCHwMFDOWQiOWQjOagt%2BacrGRkAgMPZBYCAgEPDxYCHwQFBjEwMDAxMRYCHwAFP2phdmFzY3JpcHQ6cmV0dXJuIGNvbmZpcm0oJ%2BaCqOehruWumumcgOimgeWIoOmZpOKAnDXigJ3lkJfvvJ8nKWQCCw8PFgIeB1Zpc2libGVoZGQCDA9kFgJmD2QWBAIJDw8WAh8DBUDorrDlvZXmlbDvvJozMjUmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDvmgLvpobXmlbDvvJoxLzMz6aG1ZGQCDQ8QDxYCHwFnZBAVIQfnrKwx6aG1B%2BesrDLpobUH56ysM%2BmhtQfnrKw06aG1B%2BesrDXpobUH56ysNumhtQfnrKw36aG1B%2BesrDjpobUH56ysOemhtQjnrKwxMOmhtQjnrKwxMemhtQjnrKwxMumhtQjnrKwxM%2BmhtQjnrKwxNOmhtQjnrKwxNemhtQjnrKwxNumhtQjnrKwxN%2BmhtQjnrKwxOOmhtQjnrKwxOemhtQjnrKwyMOmhtQjnrKwyMemhtQjnrKwyMumhtQjnrKwyM%2BmhtQjnrKwyNOmhtQjnrKwyNemhtQjnrKwyNumhtQjnrKwyN%2BmhtQjnrKwyOOmhtQjnrKwyOemhtQjnrKwzMOmhtQjnrKwzMemhtQjnrKwzMumhtQjnrKwzM%2BmhtRUhATABMQEyATMBNAE1ATYBNwE4ATkCMTACMTECMTICMTMCMTQCMTUCMTYCMTcCMTgCMTkCMjACMjECMjICMjMCMjQCMjUCMjYCMjcCMjgCMjkCMzACMzECMzIUKwMhZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnFgFmZBgBBQlHcmlkVmlldzEPFCsACmRkZGRkZBUBAmlkFCsAChQrAAEFBjEwMDAwMRQrAAEFBjEwMDAwMhQrAAEFBjEwMDAwNRQrAAEFBjEwMDAwNhQrAAEFBjEwMDAwNxQrAAEFBjEwMDAxMhQrAAEFBjEwMDAwNBQrAAEFBjEwMDAwMxQrAAEFBjEwMDAwORQrAAEFBjEwMDAxMQIhFCsAAQUGMTAwMDAxZA%3D%3D&CName=88952634&Button1=%E6%B7%BB%E5%8A%A0%E7%B1%BB%E5%88%AB&CParent=%E6%94%BF%E7%AD%96%E6%B3%95%E8%A7%84&GridView1$ctl13$JumpPage=0&__LASTFOCUS=88952634

QQ图片20150208215353.jpg


QQ图片20150208215418.jpg


修复方案:

版权声明:转载请注明来源 路人甲@乌云

漏洞回应

厂商回应:

危害等级:高

漏洞Rank:12

确认时间:2015-02-17 08:23

厂商回复:

最新状态:

暂无

漏洞评价:

评论