乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2014-06-30: 细节已通知厂商并且等待厂商处理中 2014-07-05: 厂商已经主动忽略漏洞,细节向公众公开
RT
随便找个地址证明下就行了http://www.tylib.com/tyread/login/logOut.do主站
当前目录:/189read/tomcat_tyread/webapps/tyread/-->>ls /189read/tomcat_tyread/webapps/tyread/ -ltotal 129244-rwxr--r--. 1 founder founder 1480387 Dec 20 2013 29881-rwxr--r--. 1 founder founder 1480387 Dec 20 2013 29881.1-rwxr--r--. 1 founder founder 1480387 Dec 20 2013 29881.2-rwxr--r--. 1 founder founder 1480387 Dec 20 2013 29881.3drwxr--r--. 16 founder founder 4096 Dec 20 2013 activity-rwxr--r--. 1 founder founder 105998 Dec 25 2013 advice_index.jsp-rwxr--r--. 1 founder founder 6277 May 13 03:29 bak.jspdrwxr--r--. 3 founder founder 4096 Dec 3 2012 ExportBooks-rwxr--r--. 1 founder founder 87 Dec 25 2013 fail.xml-rwxr--r--. 1 founder founder 49 Feb 26 14:00 fake.cfg-rwxr--r--. 1 founder founder 17542 Aug 20 2013 favicon.ico-rwxr--r--. 1 founder founder 978 Dec 25 2013 forPcReader.xml-rwxr--r--. 1 founder founder 170 May 13 03:32 info.jspdrwxr--r--. 2 founder founder 4096 Nov 13 2012 META-INFdrwxr--r--. 2 founder founder 4096 Nov 26 2013 pcreaderdrwxr--r--. 4 founder founder 4096 Jul 2 2013 project-rwxr--r--. 1 founder founder 474 Dec 25 2013 pushMsg.xml-rwxr--r--. 1 founder founder 86 Dec 25 2013 result.xml-rwxr--r--. 1 founder founder 6277 Dec 25 2013 shell.jsp-rwxr--r--. 1 founder founder 700 Mar 8 16:30 Silic.jsp-rwxr--r--. 1 founder founder 6277 Nov 15 2013 stream.jsp-rwxr--r--. 1 founder founder 3 May 13 03:31 test.txt-rwxr--r--. 1 founder founder 42160000 Aug 20 2013 tyReader1.0.exe-rwxr--r--. 1 founder founder 42021848 Nov 25 2013 tyReader1.1.0.1081.exe-rwxr--r--. 1 founder founder 42013632 Dec 31 10:12 tyReader.exedrwxr--r--. 8 founder founder 4096 Dec 20 2013 Viewdrwxr--r--. 5 founder founder 4096 Jan 21 22:28 WEB-INF
http://www.tylib.com/tyread/test.txt
危害等级:无影响厂商忽略
忽略时间:2014-07-05 11:26
暂无