VULHUB ™

### 简要描述： RT ### 详细说明： SQL注入文件 ``` /anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx ``` SQL注入案例： ``` http://218.78.241.80/anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx?id=1 http://jmzx.xmedu.cn:9999/anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx?id=1 http://www.gxbyzx.cn:88/anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx?id=1 http://oa.w12z.com/anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx?id=1 http://www.xwgjzx.com:8888/anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx?id=1 ``` ### 漏洞证明： SQL注入测试一： ``` http://218.78.241.80/anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx?id=1 ``` [<img src="https://images.seebug.org/upload/201504/0721334499d1dc589b1c05a2796274a9c230e9f5.jpg" alt="01.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201504/0721334499d1dc589b1c05a2796274a9c230e9f5.jpg) ``` 当前用户和数据库 ``` [<img...

### 简要描述： RT ### 详细说明： SQL注入文件 ``` /anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx ``` SQL注入案例： ``` http://218.78.241.80/anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx?id=1 http://jmzx.xmedu.cn:9999/anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx?id=1 http://www.gxbyzx.cn:88/anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx?id=1 http://oa.w12z.com/anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx?id=1 http://www.xwgjzx.com:8888/anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx?id=1 ``` ### 漏洞证明： SQL注入测试一： ``` http://218.78.241.80/anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx?id=1 ``` [<img src="https://images.seebug.org/upload/201504/0721334499d1dc589b1c05a2796274a9c230e9f5.jpg" alt="01.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201504/0721334499d1dc589b1c05a2796274a9c230e9f5.jpg) ``` 当前用户和数据库 ``` [<img src="https://images.seebug.org/upload/201504/07213404eaf93b0d73aa26d9adb58cc4568a2492.jpg" alt="02.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201504/07213404eaf93b0d73aa26d9adb58cc4568a2492.jpg) ``` ``` SQL注入测试二： ``` http://jmzx.xmedu.cn:9999/anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx?id=1 ``` [<img src="https://images.seebug.org/upload/201504/072134164621808d931aad407a3e13e507d4ca1a.jpg" alt="03.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201504/072134164621808d931aad407a3e13e507d4ca1a.jpg) ``` 当前用户和数据库 ``` [<img src="https://images.seebug.org/upload/201504/0721343952a41a7ea3129d75e5f550643c81a87b.jpg" alt="04.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201504/0721343952a41a7ea3129d75e5f550643c81a87b.jpg) ``` ``` SQL注入测试三： ``` http://www.gxbyzx.cn:88/anmai/KY_Mamage/Integrate_Select/Patent_Production_particular.aspx?id=1 ``` [<img src="https://images.seebug.org/upload/201504/07213500c3255fba1a6c1edafda54bd6eeca0e08.jpg" alt="05.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201504/07213500c3255fba1a6c1edafda54bd6eeca0e08.jpg) ``` 当前用户和数据库 ``` [<img src="https://images.seebug.org/upload/201504/07213515381795095e36f651cb5c83739ff1a5b7.jpg" alt="06.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201504/07213515381795095e36f651cb5c83739ff1a5b7.jpg) ``` ```