某图书管管理系统存在SQL注射漏洞又一处

2015-05-28T00:00:00
ID SSV:95749
Type seebug
Reporter Root
Modified 2015-05-28T00:00:00

Description

简要描述:

某图书管管理系统存在SQL注射漏洞又一处

详细说明:

北京清大新洋科技有限公司的图书馆集成管理系统 注入点: /opac/qtjsjg.jsp 参数:jsk 案例: http://www.kflib.cn:8089/opac/qtjsjg.jsp http://211.84.229.10:8089/opac/qtjsjg.jsp http://218.241.174.148:8070/opac/qtjsjg.jsp http://211.86.195.15:8086/opac/qtjsjg.jsp http://61.187.55.41:8090/opac/qtjsjg.jsp http://tsjs.sdwm.cn:8000/opac/qtjsjg.jsp

POST /opac/qtjsjg.jsp HTTP/1.1 Cache-Control: no-cache Referer: http://www.kflib.cn:8089/opac/index.jsp?page=index_qtjs.jsp&index=11 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.170 Safari/537.36 Accept-Language: en-us,en;q=0.5 Host: www.kflib.cn:8089 Cookie: JSESSIONID=abco41s19rigP8aBePv2u Accept-Encoding: gzip, deflate Content-Length: 83 Content-Type: application/x-www-form-urlencoded jsc=3&button1=%e6%a3%80%c2%a0%e7%b4%a2&jsk=1&jstj=3&jsfs=head

漏洞证明:

<img src="https://images.seebug.org/upload/201505/28095231969fa563c075245954d37e7c9dd3c517.jpg" alt="1.jpg" width="600" onerror="javascript:errimg(this);">