VULHUB ™

### 简要描述： RT ### 详细说明： 吉大正元信息技术股份有限公司:http://www.jit.com.cn/ 众多政府网站都在使用该系统 我就用5个案例来测试。 注入链接是： ``` /zwdtSjgl/info/dongtai_iframe.jsp?cid= ``` 案例： ``` http://218.27.207.22/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 http://139.209.60.6/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 http://218.27.140.5/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 http://218.62.81.171/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 http://61.232.168.107/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 ``` ### 漏洞证明： 案例一： ``` http://218.27.207.22/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 ``` [<img src="https://images.seebug.org/upload/201412/24160700c1c6445e90fef42e85a1a7c0c32bb294.jpg" alt="01.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/24160700c1c6445e90fef42e85a1a7c0c32bb294.jpg) ``` ``` 案例二： ``` http://218.27.190.107:8080/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 ``` [<img src="https://images.seebug.org/upload/201412/241607244f215e625c2b2e105f03c5d72ffe5b3b.jpg" alt="02.jpg" width="600"...

### 简要描述： RT ### 详细说明： 吉大正元信息技术股份有限公司:http://www.jit.com.cn/ 众多政府网站都在使用该系统 我就用5个案例来测试。 注入链接是： ``` /zwdtSjgl/info/dongtai_iframe.jsp?cid= ``` 案例： ``` http://218.27.207.22/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 http://139.209.60.6/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 http://218.27.140.5/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 http://218.62.81.171/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 http://61.232.168.107/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 ``` ### 漏洞证明： 案例一： ``` http://218.27.207.22/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 ``` [<img src="https://images.seebug.org/upload/201412/24160700c1c6445e90fef42e85a1a7c0c32bb294.jpg" alt="01.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/24160700c1c6445e90fef42e85a1a7c0c32bb294.jpg) ``` ``` 案例二： ``` http://218.27.190.107:8080/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 ``` [<img src="https://images.seebug.org/upload/201412/241607244f215e625c2b2e105f03c5d72ffe5b3b.jpg" alt="02.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/241607244f215e625c2b2e105f03c5d72ffe5b3b.jpg) ``` ``` 案例三： ``` http://218.27.140.5/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 ``` [<img src="https://images.seebug.org/upload/201412/24160802eafa0fc49474d74f425aef76aca4fd3b.jpg" alt="03.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/24160802eafa0fc49474d74f425aef76aca4fd3b.jpg) ``` ``` 案例四： ``` http://218.62.81.171/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 ``` [<img src="https://images.seebug.org/upload/201412/2416083210355f650a75943e79c9ec005fd2bc3a.jpg" alt="04.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/2416083210355f650a75943e79c9ec005fd2bc3a.jpg) ``` ``` 案例五： ``` http://61.232.168.107/zwdtSjgl/info/dongtai_iframe.jsp?cid=4 ``` [<img src="https://images.seebug.org/upload/201412/241608583a77205f058a8300721a6d00c319144b.jpg" alt="05.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/241608583a77205f058a8300721a6d00c319144b.jpg) ``` ```