当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0155795

漏洞标题:海尔某接口设计缺陷可撞库,泄漏用户订单和敏感信息

相关厂商:海尔商城

漏洞作者: 路人甲

提交时间:2015-11-25 14:55

修复时间:2016-01-11 15:32

公开时间:2016-01-11 15:32

漏洞类型:设计缺陷/逻辑错误

危害等级:低

自评Rank:3

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2015-11-25: 细节已通知厂商并且等待厂商处理中
2015-11-25: 厂商已经确认,细节仅向厂商公开
2015-12-05: 细节向核心白帽子及相关领域专家公开
2015-12-15: 细节向普通白帽子公开
2015-12-25: 细节向实习白帽子公开
2016-01-11: 细节向公众公开

简要描述:

海尔某接口设计缺陷可撞库,泄漏用户订单和敏感信息

详细说明:

http://member.ehaier.com/login.html?returnUrl=http%3A%2F%2Fmember.ehaier.com%2Findex.html此处接口一开始无验证码,一定次数之后就出来了验证码

111111.png


用户名密码明文传输,测试可以撞库,这里直接贴出部分帐号证明了:

[email protected]	s1990114	849
[email protected] gaosuper00 849
[email protected] 323916 849
[email protected] c19880125y 849
[email protected] skyyang365 849
[email protected] 6364372 849
[email protected] xx19880110 849
[email protected] czz1919 849
[email protected] xx19880110 849
[email protected] ssknaeoju 849
[email protected] wang504 849
[email protected] m125325 850
[email protected] 262366574 850
[email protected] 369wqs800 850
[email protected] 84185569 850
[email protected] a6258657 850
[email protected] kobehao 850
[email protected] 758520 850
[email protected] acm791122 850
[email protected] z137788 850
[email protected] js19901217 850
[email protected] ahan100 850
[email protected] 2861941ok 850
[email protected] zmw001226 850
[email protected] abcd1234 850
[email protected] whysma8 850
[email protected] a6317889 850
[email protected] qjy8811280 850
[email protected] h19900911 850
[email protected] acm791122 850
[email protected] yq4353387 850
[email protected] acm791122 850
[email protected] 520528hz 850
[email protected] wangs147258 850
[email protected] jhl871005 850
[email protected] tan121923 850
[email protected] 1987223ab 850
[email protected] 698990 850
[email protected] wxwxwx 851
[email protected] zhengwei8762 851
[email protected] 3226182 851
[email protected] wjyuwjyu 852
[email protected] 19870614 852
[email protected] 5561221 852
[email protected] 19850118 852
[email protected] 57896524613 853
[email protected] 57498277 853
[email protected] 345112 853
[email protected] 252525 853
[email protected] 930604 853


登录帐号证明,信息泄漏蛮严重。。

666666.png


777777.png

漏洞证明:

http://member.ehaier.com/login.html?returnUrl=http%3A%2F%2Fmember.ehaier.com%2Findex.html此处接口一开始无验证码,一定次数之后就出来了验证码

111111.png


用户名密码明文传输,测试可以撞库,这里直接贴出部分帐号证明了:

[email protected]	s1990114	849
[email protected] gaosuper00 849
[email protected] 323916 849
[email protected] c19880125y 849
[email protected] skyyang365 849
[email protected] 6364372 849
[email protected] xx19880110 849
[email protected] czz1919 849
[email protected] xx19880110 849
[email protected] ssknaeoju 849
[email protected] wang504 849
[email protected] m125325 850
[email protected] 262366574 850
[email protected] 369wqs800 850
[email protected] 84185569 850
[email protected] a6258657 850
[email protected] kobehao 850
[email protected] 758520 850
[email protected] acm791122 850
[email protected] z137788 850
[email protected] js19901217 850
[email protected] ahan100 850
[email protected] 2861941ok 850
[email protected] zmw001226 850
[email protected] abcd1234 850
[email protected] whysma8 850
[email protected] a6317889 850
[email protected] qjy8811280 850
[email protected] h19900911 850
[email protected] acm791122 850
[email protected] yq4353387 850
[email protected] acm791122 850
[email protected] 520528hz 850
[email protected] wangs147258 850
[email protected] jhl871005 850
[email protected] tan121923 850
[email protected] 1987223ab 850
[email protected] 698990 850
[email protected] wxwxwx 851
[email protected] zhengwei8762 851
[email protected] 3226182 851
[email protected] wjyuwjyu 852
[email protected] 19870614 852
[email protected] 5561221 852
[email protected] 19850118 852
[email protected] 57896524613 853
[email protected] 57498277 853
[email protected] 345112 853
[email protected] 252525 853
[email protected] 930604 853


登录帐号证明,信息泄漏蛮严重。。

666666.png


777777.png

修复方案:

加密

版权声明:转载请注明来源 路人甲@乌云


漏洞回应

厂商回应:

危害等级:中

漏洞Rank:10

确认时间:2015-11-25 15:01

厂商回复:

多谢!

最新状态:

暂无