乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-11-24: 细节已通知厂商并且等待厂商处理中 2015-11-27: 厂商已经确认,细节仅向厂商公开 2015-12-07: 细节向核心白帽子及相关领域专家公开 2015-12-17: 细节向普通白帽子公开 2015-12-27: 细节向实习白帽子公开 2016-01-11: 细节向公众公开
羽毛球协会
我也喜欢打羽毛球,想买双鞋呢,找了一圈,发现了这个网站。发现有商城,并且可以使用羽币支付买东西,羽币。。。地址:http://**.**.**.**/某个后台:http://**.**.**.**/共找到2个用户: "password" : "*****35230***", "phone" : "13438047046"
继续翻找,发现了某个用户:18628360673,貌似是的单点登录的,每个用户的权限不同,这个应该是某会的会长:弱口令:登录:
发现了羽币和会费:
羽币可以随意转账,不需要验证,羽币可以在商城直接换购东西,
羽币:100:1
会费直接商城购买东西:
可不可以搞点羽币换鞋穿2333333333333 在看看别人有多少羽币:这是普通用户,没有后台管理页面,只有个人中心
还有一个有30000多羽币的,人民币300多吧。
数据库地址:14.152.**.**数据库:
"ad.set", "admin", "**.**.**.**petition", "alipay.log", "alipay.yubi.log", "app.ad", "app.version", "bug.list", "club", "club.allowance", "club.allowance.list", "club.apply", "club.balance.log", "club.bbs", "club.bbs.new", "club.bbs.reply", "club.bbs.type", "club.birthday.reward", "club.charge.rule", "**.**.**.**modity.list", "**.**.**.**modity.order", "**.**.**.**modity.type", "club.finance", "club.finance.badminton", "club.finance.card", "club.gym.collect", "club.gym.correction", "club.gym.list", "club.mall.info", "club.member", "club.member.apply", "club.member.expend", "club.member.period", "club.member.recharge", "club.member.type", "club.mgr.log", "club.movement.reward", "club.movement.type", "**.**.**.**anizers.reward", "club.page", "club.page.mobile", "club.qq.robot", "club.ques.answ", "club.recharge.set", "club.robot.notice", "club.user.log", "club.yubi.log", "commodity.batch.box", "commodity.batch.order", "commodity.batch.return", "commodity.box", "**.**.**.**ment", "commodity.list", "commodity.order", "commodity.postage", "commodity.question", "commodity.recommend", "commodity.settle", "commodity.type", "competition.challenge", "competition.chat", "competition.food.book", "competition.join", "competition.join.jingcai", "competition.join.support", "competition.list", "competition.schedule", "competition.schedule.detail", "competition.series", "competition.series.apply", "**.**.**.**ment", "competition.series.image", "competition.series.join", "competition.series.partners", "discovery.recommend", "discovery.searchkey", "faq.list", "faq.type", "finance.st", "finance.stats", "gym", "gym.admin", "**.**.**.**modity", "**.**.**.**modity.type", "gym.festival", "gym.item", "gym.item.place", "gym.log", "gym.member", "gym.member.pay.log", "gym.member.recharge", "gym.member.type", "gym.order", "gym.price", "help.bbs", "**.**.**.**modity", "lot.history", "lot.history.support", "lot.set", "member.balance.log", "member_balance_log", "**.**.**.**ment", "news.list", "pay.log", "photo", "**.**.**.**ment", "photo.feed", "photo.list", "qq.bet", "qq.chat", "qq.lot", "qq.test", "qq.user.info", "redpacket", "redpacket.record", "robot.notice.list", "robot.send.log", "robot.template", "sms.log", "sponsor.apply", "stat.alipay", "stat.club", "stat.join", "stat.register", "survey.detail", "sys.info", "system.indexes", "system.users", "testclub.list", "user", "user.certification", "**.**.**.**modity.address", "**.**.**.**modity.box", "**.**.**.**modity.order", "**.**.**.**modity.return", "user.profile", "user.yubi.log", "**.**.**.**ment", "video.list", "video.recommend", "video.type", "weixin.qrcode", "wx.activity", "wx.jingcai", "wx.jingcai.support", "wx.user", "yuxin.notice.list"
部分用户:
13800000009 zyl123qwe,./ 78961518920110887 111111 38000013604903750 636590 25173413908057685 mthgh*746219 13554913585500975 894136 8794418080133522 chen0713 8472118030869706 hhb33226619 7566413980994578 feifei919 6950815921762102 255962 6469613940014023 730569 6311713807492122 61103 6092715618631586 6000018621337255 xfsm2003 5731918696136760 229846525 5646013402130984 62657327wei 5638118624025478 730569 5541315376362783 860210 5375913699099952 gyd740906 5021018049982815 xouhl08j 5008613870780600 123456 4834618640079227 636590 4661018709688999 gyx54101302 4651513818517133 111111 4172013915011779 60615 4000013882282555 yfazlj99 3743713574843943 meizhenq961223 3592213708198109 20050511cjy 3557913971665272 111111 35009
一共10w多用户,还可以吧。
增强权限控制
危害等级:中
漏洞Rank:8
确认时间:2015-11-27 16:42
CNVD未直接复现所述漏洞情况,暂未建立与网站管理单位的直接处置渠道,待认领。
2015-11-27:补充:未能联系到相关单位