|某政府信息公开系统存在SQL注入 - VULHUB开源网络安全威胁库

某政府信息公开系统存在SQL注入

- AV AC AU C I A

发布： 2025-04-13

修订： 2025-04-13

### 简要描述： RT ### 详细说明：吉大正元信息技术股份有限公司:http://www.jit.com.cn/ 众多政府网站都在使用该系统。我就用5个案例来测试。注入链接是： ``` /zwdtSjgl/Manual/Manual.jsp?depid= ``` 案例： ``` http://218.27.140.5/zwdtSjgl/Manual/Manual.jsp?depid=013524006 http://218.62.100.33:8000/zwdtSjgl/Manual/Manual.jsp?depid=01361537-0 http://122.141.66.213/zwdtSjgl/Manual/Manual.jsp?depid=013571777 http://222.160.175.90/zwdtSjgl/Manual/Manual.jsp?depid=01358800-x http://222.160.140.29:8000/zwdtSjgl/Manual/Manual.jsp?depid=013581895 ``` ### 漏洞证明：案例一： ``` http://218.27.140.5/zwdtSjgl/Manual/Manual.jsp?depid=013524006 ``` [<img src="https://images.seebug.org/upload/201412/21230910a060d7b9e8ce5d6dede5a85b4344bc91.jpg" alt="01.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/21230910a060d7b9e8ce5d6dede5a85b4344bc91.jpg) ``` ``` [<img src="https://images.seebug.org/upload/201412/212309193038e3a02072b55b8db07f704821a8d3.jpg" alt="02.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/212309193038e3a02072b55b8db07f704821a8d3.jpg) ``` ``` 案例二： ``` http://218.62.100.33:8000/zwdtSjgl/Manual/Manual.jsp?depid=01361537-0 ``` [<img src="https://images.seebug.org/upload/201412/21231340b1d4a30c866e31c3444c164987c4af41.jpg" alt="03.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/21231340b1d4a30c866e31c3444c164987c4af41.jpg) ``` ``` [<img src="https://images.seebug.org/upload/201412/21231349de1aa2169723f7e5b6feaaaee87d4a1e.jpg" alt="04.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/21231349de1aa2169723f7e5b6feaaaee87d4a1e.jpg) ``` ``` 案例三： ``` http://122.141.66.213/zwdtSjgl/Manual/Manual.jsp?depid=013571777 ``` [<img src="https://images.seebug.org/upload/201412/21231810384d253ba69f40d4823479df71d8c05d.jpg" alt="05.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/21231810384d253ba69f40d4823479df71d8c05d.jpg) ``` ``` [<img src="https://images.seebug.org/upload/201412/21231817ec7593d1c8b62ef6ac6e5fa9495ae78c.jpg" alt="06.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/21231817ec7593d1c8b62ef6ac6e5fa9495ae78c.jpg) ``` ``` 案例四： ``` http://222.160.175.90/zwdtSjgl/Manual/Manual.jsp?depid=01358800-x ``` [<img src="https://images.seebug.org/upload/201412/2123212885c7f1170764afd5228586fcbaf4c800.jpg" alt="07.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/2123212885c7f1170764afd5228586fcbaf4c800.jpg) ``` ``` [<img src="https://images.seebug.org/upload/201412/21232136958457a5438e506106a994de56bf2c02.jpg" alt="08.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/21232136958457a5438e506106a994de56bf2c02.jpg) ``` ``` 案例五： ``` http://222.160.140.29:8000/zwdtSjgl/Manual/Manual.jsp?depid=013581895 ``` [<img src="https://images.seebug.org/upload/201412/212325199602c0b76188d19396acae938fb5d374.jpg" alt="09.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/212325199602c0b76188d19396acae938fb5d374.jpg) ``` ``` [<img src="https://images.seebug.org/upload/201412/21232527f8c660f0efd454e2f1f0e45f195a546e.jpg" alt="10.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201412/21232527f8c660f0efd454e2f1f0e45f195a546e.jpg) ``` ```

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有0条受影响产品信息

您还没有登录，登录后可查看更多

添加资源
收藏资源
问题反馈

贡献用户

暂无贡献用户

VULHUB ™