乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-09-23: 细节已通知厂商并且等待厂商处理中 2015-09-23: 厂商已经确认,细节仅向厂商公开 2015-10-03: 细节向核心白帽子及相关领域专家公开 2015-10-13: 细节向普通白帽子公开 2015-10-23: 细节向实习白帽子公开 2015-11-07: 细节向公众公开
RT
URL:http://ifi.huayiweibo.com/webroot/login.php登录处post包:
POST /webroot/login.php HTTP/1.1Accept: text/html, application/xhtml+xml, */*Referer: http://118.26.207.26:8080/webroot/Accept-Language: zh-CNUser-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)Content-Type: application/x-www-form-urlencodedAccept-Encoding: gzip, deflateHost: ifi.huayiweibo.comContent-Length: 103Proxy-Connection: Keep-AlivePragma: no-cacheCookie: __utmt=1; __utma=162802469.76806919.1442678802.1442678802.1442678802.1; __utmb=162802469.2.10.1442678802; __utmc=162802469; __utmz=162802469.1442678802.1.1.utmcsr=118.26.207.26:8080|utmccn=(referral)|utmcmd=referral|utmcct=/webroot/login_name=admin*&login_password=asdasdasd&=%E7%99%BB%E5%BD%95&__hash__=026ede5c56871d0c11875aaff7ed289b
233..
危害等级:高
漏洞Rank:20
确认时间:2015-09-23 15:51
感谢提交,已通知业务部门处理
暂无