Discuz! Database Error

(0) It is not safe to do this query
REPLACE INTO common_cache SET `cachekey`='threadclasscount_446' , `cachevalue`='a:1:{s:6:\"typeid\";a:146:{i:432;s:2:\"17\";i:433;s:1:\"7\";i:435;s:1:\"1\";i:434;s:1:\"6\";i:439;s:2:\"14\";s:19:\"433\\\'\\\"dec0yscanner\";s:3:\"169\";s:46:\"433\\\'\\\"><script>confirm(201308151610)</script>\";s:3:\"169\";s:12:\"dec0yscanner\";s:3:\"191\";s:89:\"433\\\"><a href=data:text/html;base64,PHNjcmlwdD5hbGVydCgxKTwvc2NyaXB0Pg==>201308151610</a>\";s:3:\"169\";s:35:\"433\r\nInjectedHeader: injected_value\";s:3:\"169\";s:118:\"433\\\"><a href=&#106&#97&#118&#97&#115&#99&#114&#105&#112&#116&#58&#97&#108&#101&#114&#116&#40&#49&#41>201308151610</a>\";s:3:\"169\";s:52:\"433\\\"><iframe onload=confirm(201308151610)></iframe>\";s:3:\"169\";s:68:\"433\\\"><img/**/src=/201308151610/ /**/onload=confirm(201308151610) />\";s:3:\"169\";s:44:\"433\\\"><script>confirm(201308151610)</script>\";s:3:\"169\";s:50:\"433\\\"><img src=javascript:confirm(201308151610) />\";s:3:\"169\";s:49:\"433\\\"><iframe src = \\\"ht tp: / / 201308151610\\\" >\";s:3:\"169\";s:60:\"433\\\">+ADw-script+AD4-confirm(201308151610)+ADw-/script+AD4-\";s:3:\"169\";s:45:\"433\\\" onmouseover=confirm(201308151610) a=\\\"\";s:3:\"169\";s:43:\"433\\\";javascript:confirm(201308151610);a=\\\"\";s:3:\"169\";s:42:\"433--><ScRiPt>prompt(/dec0y/)</ScRiPt><!--\";s:3:\"169\";s:22:\"hTtp://home.baidu.com/\";s:3:\"191\";s:14:\"home.baidu.com\";s:3:\"191\";s:28:\"dec0y<s1ï¹¥s2ʺs3ʹscanner\";s:3:\"191\";s:20:\"433&hppname=hppvalue\";s:3:\"169\";s:11:\"/etc/passwd\";s:3:\"191\";s:46:\"../../../../../../../../../../../../etc/passwd\";s:3:\"191\";s:52:\"../../../../../../../../../../../../etc/passwd\\0.htm\";s:3:\"191\";s:46:\"À®/À®/À®/À®/À®/À®/À®/À®/À®/À®/À®/À®/etc/passwd\";s:3:\"191\";s:34:\"../../../../../../../../etc/passwd\";s:3:\"191\";s:18:\"file:///etc/passwd\";s:3:\"191\";s:47:\"/../../../../../../../../../../../../etc/passwd\";s:3:\"191\";s:84:\"//....//....//....//....//....//....//....//....//....//....//....//....//etc/passwd\";s:3:\"191\";s:13:\"\\\\etc\\\\passwd\";s:3:\"191\";s:20:\"C:\\\\windows\\\\win.ini\";s:3:\"191\";s:26:\"C:\\\\windows\\\\win.ini\\0.htm\";s:3:\"191\";s:57:\"À®/À®/À®/À®/À®/À®/À®/À®/À®/À®/À®/À®/windows/win.ini\\0.htm\";s:3:\"191\";s:42:\"../../../../../../../../../windows/win.ini\";s:3:\"191\";s:48:\"../../../../../../../../../windows/win.ini\\0.htm\";s:3:\"191\";s:26:\"file:///c:/windows/win.ini\";s:3:\"191\";s:18:\"c:/windows/win.ini\";s:3:\"191\";s:16:\"/WEB-INF/web.xml\";s:3:\"191\";s:60:\"..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\WEB-INF\\\\web.xml\";s:3:\"191\";s:45:\"../../../../../../../../../../WEB-INF/web.xml\";s:3:\"191\";s:57:\"/..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\WEB-INF\\\\web.xml\";s:3:\"191\";s:46:\"/../../../../../../../../../../WEB-INF/web.xml\";s:3:\"191\";s:58:\"\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\WEB-INF\\\\web.xml\";s:3:\"191\";s:15:\"WEB-INF/web.xml\";s:3:\"191\";s:16:\"WEB-INF\\\\web.xml\";s:3:\"191\";s:9:\"forum.php\";s:3:\"191\";s:10:\"/forum.php\";s:3:\"191\";s:11:\"\\\\forum.php\";s:3:\"191\";s:51:\"../../../../../../../../../../../../etc/passwd\\0.js\";s:3:\"191\";s:25:\"C:\\\\windows\\\\win.ini\\0.js\";s:3:\"191\";s:56:\"À®/À®/À®/À®/À®/À®/À®/À®/À®/À®/À®/À®/windows/win.ini\\0.js\";s:3:\"191\";s:5:\"433\\\'\";s:3:\"169\";s:18:\"433\\\' having 2=2--\";s:3:\"169\";s:16:\"433 having 2=2--\";s:3:\"169\";s:6:\"433\\\";\";s:3:\"169\";s:274:\"\\\'and(select 1 from(select count(*),concat((select concat(CHAR(52),CHAR(67),CHAR(117),CHAR(110),CHAR(78),CHAR(117),CHAR(106),CHAR(119),CHAR(101),CHAR(99),CHAR(78)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)and\\\'\";s:3:\"191\";s:4:\"433a\";s:3:\"169\";s:104:\"(select char(97)+char(110)+char(116)+char(105)+char(95)+char(100)+char(101)+char(99)+char(48)+char(121))\";s:3:\"191\";s:7:\"433\\\'\\\"\";s:3:\"169\";s:11:\"433 and 2=2\";s:3:\"169\";s:11:\"433 and 2=3\";s:3:\"169\";s:19:\"433\\\' and \\\'2\\\'=\\\'2\";s:3:\"169\";s:19:\"433\\\' and \\\'2\\\'=\\\'3\";s:3:\"169\";s:25:\"433%\\\' and \\\'2\\\' like \\\'2\";s:3:\"169\";s:25:\"433%\\\' and \\\'2\\\' like \\\'3\";s:3:\"169\";s:10:\"433 or 2=3\";s:3:\"169\";s:10:\"433 or 2=2\";s:3:\"169\";s:18:\"433\\\' or \\\'2\\\'=\\\'2\";s:3:\"169\";s:25:\"433\\\' and 2 is not null--\";s:3:\"169\";s:21:\"433\\\' and 2 is null--\";s:3:\"169\";s:26:\"433%\\\' and 2 is not null--\";s:3:\"169\";s:22:\"433%\\\' and 2 is null--\";s:3:\"169\";s:23:\"433 and 2 is not null--\";s:3:\"169\";s:19:\"433 and 2 is null--\";s:3:\"169\";s:7:\"433-2+2\";s:3:\"169\";s:5:\"433-2\";s:3:\"169\";s:19:\"433\\\' || \\\'\\\' || \\\'\";s:3:\"169\";s:26:\"433\\\' || \\\'scanner\\\' || \\\'\";s:3:\"169\";s:12:\"(select 433)\";s:3:\"191\";s:24:\"433\\\' and \\\'2\\\' like \\\'2\";s:3:\"169\";s:24:\"433\\\' and \\\'2\\\' like \\\'3\";s:3:\"169\";s:116:\"if(now()=sysdate(),sleep(0),0)/*\\\'XOR(if(now()=sysdate(),sleep(0),0))OR\\\'\\\"XOR(if(now()=sysdate(),sleep(0),0))OR\\\"*/\";s:3:\"191\";s:116:\"if(now()=sysdate(),sleep(3),0)/*\\\'XOR(if(now()=sysdate(),sleep(3),0))OR\\\'\\\"XOR(if(now()=sysdate(),sleep(3),0))OR\\\"*/\";s:3:\"191\";s:118:\"(select(0)from(select(sleep(0)))v)/*\\\'+(select(0)from(select(sleep(0)))v)+\\\'\\\"+(select(0)from(select(sleep(0)))v)+\\\"*/\";s:3:\"191\";s:118:\"(select(0)from(select(sleep(3)))v)/*\\\'+(select(0)from(select(sleep(3)))v)+\\\'\\\"+(select(0)from(select(sleep(3)))v)+\\\"*/\";s:3:\"191\";s:34:\"scan\\\'); waitfor delay \\\'0:0:0\\\'--\";s:3:\"191\";s:34:\"scan\\\'); waitfor delay \\\'0:0:3\\\'--\";s:3:\"191\";s:30:\"433; waitfor delay \\\'0:0:0\\\'--\";s:3:\"169\";s:30:\"433; waitfor delay \\\'0:0:3\\\'--\";s:3:\"169\";s:25:\"i18n14svki)(objectClass=*\";s:3:\"191\";s:28:\"i18n14svki)(!(objectClass=*)\";s:3:\"191\";s:14:\"rayscan-s2-053\";s:3:\"191\";s:115:\"%{#context[\\\'com.opensymphony.xwork2.dispatcher.HttpServletResponse\\\'].addHeader(\\\'RAY-SCAN-TEST\\\',\\\'S2-053\\\')}\r\n\r\n\";s:3:\"191\";s:7:\"433&ver\";s:3:\"169\";s:7:\"433|ver\";s:3:\"169\";s:6:\"433|id\";s:3:\"169\";s:6:\"433&id\";s:3:\"169\";s:6:\"433;id\";s:3:\"169\";s:10:\"phpinfo();\";s:3:\"191\";s:13:\"`set|set&set`\";s:3:\"191\";s:21:\"${@print(md5(dec0y))}\";s:3:\"191\";s:15:\"\\\'set|set&set\\\'\";s:3:\"191\";s:36:\"<iframe src=https://www.baidu.com />\";s:3:\"191\";s:16:\"*)(objectClass=*\";s:3:\"191\";s:19:\"*)(!(objectClass=*)\";s:3:\"191\";s:46:\"<!--#include file=\\\"c:\\\\windows\\\\win%.ini\\\"-->\";s:3:\"191\";s:36:\"<!--#include file=\\\"/etc/passwd\\\"-->\";s:3:\"191\";s:24:\"<!--#exec cmd=\\\"ver\\\"-->\";s:3:\"191\";s:23:\"<!--#exec cmd=\\\"id\\\"-->\";s:3:\"191\";s:8:\"432\\\'A=0\";s:3:\"132\";s:66:\"433\\\'and/**/extractvalue(1,concat(char(126),md5(1983050437)))and\\\'\";s:3:\"198\";s:66:\"433\\\"and/**/extractvalue(1,concat(char(126),md5(1235634139)))and\\\"\";s:3:\"198\";s:49:\"extractvalue(1,concat(char(126),md5(1590108469)))\";s:3:\"265\";s:63:\"433\\\'and(select\\\'1\\\'from/**/cast(md5(1679765579)as/**/int))>\\\'0\";s:3:\"198\";s:50:\"433/**/and/**/cast(md5(\\\'1987168569\\\')as/**/int)>0\";s:3:\"198\";s:70:\"convert(int,sys.fn_sqlvarbasetostr(HashBytes(\\\'MD5\\\',\\\'1341165694\\\')))\";s:3:\"265\";s:86:\"433\\\'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes(\\\'MD5\\\',\\\'1741591646\\\')))>\\\'0\";s:3:\"198\";s:13:\"433鎈\\'\\\"\\\\(\";s:3:\"198\";s:10:\"433\\\'\\\"\\\\(\";s:3:\"198\";s:14:\"433/**/and+4=4\";s:3:\"198\";s:14:\"433/**/and+2=8\";s:3:\"198\";s:17:\"433\\\'and\\\'a\\\'=\\\'a\";s:3:\"198\";s:17:\"433\\\'and\\\'w\\\'=\\\'g\";s:3:\"198\";s:17:\"433\\\"and\\\"s\\\"=\\\"s\";s:3:\"198\";s:17:\"433\\\"and\\\"d\\\"=\\\"g\";s:3:\"198\";s:48:\"(select*from(select+sleep(0)union/**/select+1)a)\";s:3:\"265\";s:48:\"(select*from(select+sleep(2)union/**/select+1)a)\";s:3:\"265\";s:63:\"433\\\'and(select*from(select+sleep(0))a/**/union/**/select+1)=\\\'\";s:3:\"198\";s:63:\"433\\\'and(select*from(select+sleep(2))a/**/union/**/select+1)=\\\'\";s:3:\"198\";s:63:\"433\\\"and(select*from(select+sleep(0))a/**/union/**/select+1)=\\\"\";s:3:\"198\";s:63:\"433\\\"and(select*from(select+sleep(2))a/**/union/**/select+1)=\\\"\";s:3:\"198\";s:49:\"433/**/and(select+1/**/from/**/pg_sleep(0))>0/**/\";s:3:\"198\";s:49:\"433/**/and(select+1/**/from/**/pg_sleep(2))>0/**/\";s:3:\"198\";s:48:\"433\\\'/**/and(select\\\'1\\\'from/**/pg_sleep(0))>\\\'0\";s:3:\"198\";s:48:\"433\\\'/**/and(select\\\'1\\\'from/**/pg_sleep(2))>\\\'0\";s:3:\"198\";s:51:\"433/**/and(select+1)>0waitfor/**/delay\\\'0:0:0\\\'/**/\";s:3:\"198\";s:51:\"433/**/and(select+1)>0waitfor/**/delay\\\'0:0:2\\\'/**/\";s:3:\"198\";s:43:\"433\\\'and(select+1)>0waitfor/**/delay\\\'0:0:0\";s:3:\"198\";s:43:\"433\\\'and(select+1)>0waitfor/**/delay\\\'0:0:2\";s:3:\"198\";s:50:\"433/**/and/**/4=DBMS_PIPE.RECEIVE_MESSAGE(\\\'x\\\',0)\";s:3:\"198\";s:50:\"433/**/and/**/0=DBMS_PIPE.RECEIVE_MESSAGE(\\\'n\\\',2)\";s:3:\"198\";s:54:\"433\\\'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE(\\\'c\\\',0)=\\\'c\";s:3:\"198\";s:54:\"433\\\'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE(\\\'n\\\',2)=\\\'n\";s:3:\"198\";}}'

PHP Debug

No.FileLineCode
1forum.php67require(%s)
2source/module/forum/forum_forumdisplay.php544threadclasscount(%s, %d, %s, %s)
3source/function/function_forumlist.php410discuz_table->insert(Array, false, true)
4source/class/discuz/discuz_table.php81discuz_database::insert(%s, Array, false, true, %s)
5source/class/discuz/discuz_database.php60discuz_database::query(%s, %s, %s, true)
6source/class/discuz/discuz_database.php140discuz_database::checkquery(%s)
7source/class/discuz/discuz_database.php177discuz_database_safecheck::checkquery(%s)
8source/class/discuz/discuz_database.php368break()
www.aylt.cn ÒѾ­½«´Ë³ö´íÐÅÏ¢Ïêϸ¼Ç¼, Óɴ˸øÄú´øÀ´µÄ·ÃÎʲ»±ãÎÒÃÇÉî¸ÐǸÒâ.