乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-04-16: 细节已通知厂商并且等待厂商处理中 2015-04-17: 厂商已经确认,细节仅向厂商公开 2015-04-27: 细节向核心白帽子及相关领域专家公开 2015-05-07: 细节向普通白帽子公开 2015-05-17: 细节向实习白帽子公开 2015-06-01: 细节向公众公开
广州致公基层党务协同平台getshell
网址:http://59.41.9.191/toLogin.action描述:站点存在Struts命令执行
page.rowsPerPage=10#uploadPath=\\192.168.8.92\dcpuploadPath=D\:\\archivecommonPwd=900150983cd24fb0d6963f7d28e17f72list.orderdown.path=/common/images/orderdown.giflist.orderup.path=/common/images/orderup.gifhtmlformelementtags=input,select,textareafilenum=S-20110876adminid=667ce6bf-7501-4872-8c63-e01a4bbe8306#\u8bbe\u7f6e\u5efa\u8bbe\u5355\u4f4dbuildunit=\u5e7f\u5dde\u81f4\u516c\u57fa\u5c42\u515a\u52a1\u534f\u540c\u5e73\u53f0#iframe\u547d\u540d\u7684\u524d\u7f00iframePrefix=dcp_#\u4e0d\u8bb0\u5f55\u65e5\u5fd7\u7684url\uff0c\u591a\u4e2a\u7528,\u9694\u5f00\uff08\u4e0d\u5efa\u8bae\u7528\u8fd9\u4e2a\uff09excludeUrlLog=sys/logtoList#\u4e0d\u8bb0\u5f55\u65e5\u5fd7\u7684class\u65b9\u6cd5\uff0c\u5bf9\u5e94struts\u914d\u7f6e\u6587\u4ef6\u7684class\u548cmethod\uff0cmethod\u5982\u679c\u4e3a\u7a7a\uff0c\u5219\u6574\u4e2aclass\u90fd\u4e0d\u8bb0\u5f55\u65e5\u5fd7\uff0c\u591a\u4e2a\u7528,\u9694\u5f00\uff08\u5efa\u8bae\u7528\u8fd9\u4e2a\uff09excludeActionMethod=/sys/LogAction?method\=toList,/sys/LogAction?method\=doDelete,/sys/userAction
<?xml version="1.0" encoding="utf-8"?><SysConfig xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema"> <CorpsmsDbType>SqlServer</CorpsmsDbType> <CorpsmsDbIP>ZHIGONG-PT</CorpsmsDbIP> <CorpsmsDbUserName>sa</CorpsmsDbUserName> <CorpsmsDbPwd>555</CorpsmsDbPwd> <CorpsmsDbPath>C:\Program Files\骞垮?棣??\DBSms\Corpsms.mdb</CorpsmsDbPath> <CorpsmsDbName>zhigong_public</CorpsmsDbName> <CorpsmsMtTbName>mtTable</CorpsmsMtTbName> <CorpsmsSentMtTbName>sentMtTable</CorpsmsSentMtTbName> <CorpsmsMoTbName>moTable</CorpsmsMoTbName> <CorpsmsRptTbName>RptTable</CorpsmsRptTbName> <SignLen>8</SignLen> <MtInterval>1000</MtInterval> <MoInterval>1000</MoInterval> <RptInterval>1000</RptInterval> <IsUseMas>false</IsUseMas> <MasIP>127.0.0.1</MasIP> <MasApiCode>corpsms</MasApiCode> <MasApiUsername>corpsms</MasApiUsername> <MasApiPwd>corpsms</MasApiPwd> <MasDbName>mas</MasDbName> <IsResendByCorpsms>false</IsResendByCorpsms> <IsUseDxy>true</IsUseDxy> <CorpServer>sms3.mobset.com</CorpServer> <CorpID>300527</CorpID> <CorpUsername>gzzg</CorpUsername> <CorpPwd>467312</CorpPwd> <IsLongSms>true</IsLongSms> <Speed>20</Speed> <IsShowLog>true</IsShowLog> <SelCount>100</SelCount> <ChinaMobile>134|135|136|137|138|139|150|151|152|154|157|158|159|187|188|182|183</ChinaMobile> <ChinaUnicom>130|131|132|155|156|185|186</ChinaUnicom> <ChinaTelecom>133|153|189|180|181</ChinaTelecom></SysConfig>
补丁
危害等级:高
漏洞Rank:10
确认时间:2015-04-17 16:32
非常感谢您的报告。报告中的问题已确认并复现.影响的数据:高攻击成本:低造成影响:高综合评级为:高,rank:10正在联系相关网站管理单位处置。
暂无