VULHUB ™

### 简要描述： RT ### 详细说明： 杭州麦达电子有限公司开发的特色库系统，用户包括众多国内知名高校。 ``` http://www.metadata.com.cn/cpjs1.asp?ProID=42 ``` 该系统存在注入，以 ``` http://210.33.44.5:8080/docinfo?docid=302&dbid=2&dbname=%E5%AD%A6%E4%BD%8D%E8%AE%BA%E6%96%87%E5%BA%93 ``` 为例 docid 参数存在注入 [<img src="https://images.seebug.org/upload/201506/1521395904a791ab1c36ae4ed7bbf88ecfadc047.jpg" alt="1.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201506/1521395904a791ab1c36ae4ed7bbf88ecfadc047.jpg) [<img src="https://images.seebug.org/upload/201506/15214338346fd15f0df2eb7dda39a4ee88890387.jpg" alt="2.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201506/15214338346fd15f0df2eb7dda39a4ee88890387.jpg) ### 漏洞证明： 部分测试案例： ``` http://61.153.216.108:8088//docinfo?docid=1&dbid=23&dbname=%E6%B5%B7%E6%B4%8B%E6%96%87%E7%8C%AE%E5%BA%93...

### 简要描述： RT ### 详细说明： 杭州麦达电子有限公司开发的特色库系统，用户包括众多国内知名高校。 ``` http://www.metadata.com.cn/cpjs1.asp?ProID=42 ``` 该系统存在注入，以 ``` http://210.33.44.5:8080/docinfo?docid=302&dbid=2&dbname=%E5%AD%A6%E4%BD%8D%E8%AE%BA%E6%96%87%E5%BA%93 ``` 为例 docid 参数存在注入 [<img src="https://images.seebug.org/upload/201506/1521395904a791ab1c36ae4ed7bbf88ecfadc047.jpg" alt="1.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201506/1521395904a791ab1c36ae4ed7bbf88ecfadc047.jpg) [<img src="https://images.seebug.org/upload/201506/15214338346fd15f0df2eb7dda39a4ee88890387.jpg" alt="2.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201506/15214338346fd15f0df2eb7dda39a4ee88890387.jpg) ### 漏洞证明： 部分测试案例： ``` http://61.153.216.108:8088//docinfo?docid=1&dbid=23&dbname=%E6%B5%B7%E6%B4%8B%E6%96%87%E7%8C%AE%E5%BA%93 http://61.174.215.30:8010/tsk/docinfo?docid=39759&dbid=3&dbname=%E6%95%B0%E5%AD%97%E6%8E%A7%E5%88%B6%E6%8A%80%E6%9C%AF%E6%9C%9F%E5%88%8A%E8%AE%BA%E6%96%87%E5%BA%93 http://floklore.wzu.edu.cn:8080//docinfo?docid=1084&dbid=6&dbname=%E5%9B%BE%E5%83%8F%E8%B5%84%E6%BA%90%E5%BA%93 http://210.33.44.5:8080/docinfo?docid=302&dbid=2&dbname=%E5%AD%A6%E4%BD%8D%E8%AE%BA%E6%96%87%E5%BA%93 http://210.32.23.105:8011/docinfo?docid=76&dbid=8 http://59.79.133.17:8011/srdx/docinfo?docid=28933&dbid=5&dbname=%E7%94%B5%E5%AD%90%E5%9B%BE%E4%B9%A6 http://210.33.80.27:8011/docinfo?docid=6&dbname=%25E5%25B8%2588%25E5%25A4%25A7%25E6%2588%2590%25E6%259E%259C%25E5%25BA%2593&dbid=31 http://210.33.124.16:8011//docinfo?docid=4223&dbid=7&dbname=%E4%B9%A6%E6%B3%95 http://210.32.121.249/fztsk/docinfo?docid=2836&dbid=18&type=img http://210.33.44.5:8080/docinfo?docid=302&dbid=2&dbname=%E5%AD%A6%E4%BD%8D%E8%AE%BA%E6%96%87%E5%BA%93 http://libmusic.hznu.edu.cn/docinfo?docid=3150&dbid=6 http://61.164.87.150:8080/docinfo?docid=1&dbid=12&dbname=%E6%9C%BA%E7%94%B5%E6%A8%A1%E5%85%B7%E6%9C%9F%E5%88%8A%E6%95%B0%E6%8D%AE%E5%BA%93 http://210.32.121.249/silktsk/docinfo?docid=30133&dbid=14&dbname=%E6%9C%9F%E5%88%8A%E6%96%87%E6%91%98%E5%BA%93 http://zadl.lib.hutc.zj.cn/docinfo?docid=1&dbid=9&dbname=%E7%A0%94%E7%A9%B6%E5%BA%93 http://60.190.19.104//docinfo?docid=1&dbid=5&dbname=%E6%97%85%E6%B8%B8%E4%B8%AD%E6%96%87%E5%9B%BE%E4%B9%A6%E5%BA%93 ```