乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-09-14: 细节已通知厂商并且等待厂商处理中 2015-09-19: 厂商已经主动忽略漏洞,细节向公众公开
RT
http://yimin.edai.com/immigrate.php
发现姓名处没做过滤导致XSS, 然后一直提交就好了
location : http://yimin.edai.com/manager/cx/immigrate.php?act=list&table=immigratetoplocation : http://yimin.edai.com/manager/cx/index.phpcookie : Hm_lvt_782b849c425023bb2fb18cb48f994709=1441191771,1442206686; pgv_pvi=1575768064; CKFinder_Path=Images%3A%2Fcountryp%2F%3A1; _gscu_1824872095=41194379v3fm7b15; _ga=GA1.2.525257669.1441194383; _jzqa=1.4508643969870866400.1441632223.1441632223.1441632223.1; _jzqx=1.1441632223.1441632223.1.jzqsr=edai%2Ecom|jzqct=/.-; __utma=225125198.525257669.1441194383.1441632225.1441632225.1; __utmz=225125198.1441632225.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); _jzqy=1.1441632254.1441632254.1.jzqsr=baidu.-; PHPSESSID=u80iddt29jkb48ss4mgmqkvn16; Hm_lpvt_782b849c425023bb2fb18cb48f994709=1442208007; IESESSION=alive; pgv_si=s9851094016
危害等级:无影响厂商忽略
忽略时间:2015-09-19 13:34
漏洞Rank:4 (WooYun评价)
暂无