乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-01-26: 细节已通知厂商并且等待厂商处理中 2015-01-26: 厂商主动忽略漏洞,细节向第三方安全合作伙伴开放 2015-03-22: 细节向核心白帽子及相关领域专家公开 2015-04-01: 细节向普通白帽子公开 2015-04-11: 细节向实习白帽子公开 2015-04-02: 细节向公众公开
MoMoCMS_v3.1重装系统
MoMoCMS_v3.1企业建站系统Install/index.php里没有进行判断lock,你们能判断一下lock吗?在install/index.php
<script type="text/javascript">$(document).ready(function(){ /* setup navigation, content boxes, etc... */ // validate signup form on keyup and submit var validator = $("#loginform").validate({ rules: { db_host: "required", db_name: "required", db_user: "required", db_prefix: "required", admin: "required", password: "required", url: "required" }, messages: { db_host: "数据库地址必填", db_name: "数据库名必填", db_user: "数据库用户名必填", db_prefix: "数据表前缀必填", admin: "管理员账号必填", password: "管理员密码必填", url: "网站首页地址必填" }, // the errorPlacement has to take the layout into account errorPlacement: function(error, element) { error.insertAfter(element.parent().find('label:first')); } });});</script></head><body> <!-- Header --> <header id="top"> <div class="wrapper-login"> <!-- Title/Logo - can use text instead of image --> <div id="title"><img SRC="../resource/logo.gif" /><!--<span>Administry</span> demo--></div> <!-- Main navigation --> <nav id="menu"> <ul class="sf-menu"> <li class="current"><a href="javascript:;">安装界面</a></li> </ul> </nav> </div> </header> <!-- End of Header --> <!-- Page title --> <div id="pagetitle"> <div class="wrapper-login"></div> </div> <!-- End of Page title --> <!-- Page content --> <div id="page"> <!-- Wrapper --> <div class="wrapper-login"> <!-- Login form --> <section class="full"> <h3></h3> <div class="box box-info">欢迎使用MoMoCMS, 请完成下面的安装<br>为更好的体验,默认带上安装数据包</div> <form id="loginform" enctype="multipart/form-data" method="post" action="./install_do.php" target="hiddenframe" onsubmit="document.documentElement.scrollTop = document.body.scrollTop =0;"> <iframe id="hiddenframe" name="hiddenframe" style="width:0;height:0;"></iframe> <p> <label class="required">数据库地址:</label><br/> <input type="text" id="db_host" class="full" value="localhost" name="db_host"/> </p> <p> <label class="required">数据库名:</label><br/> <input type="text" id="db_name" class="full" value="momocms" name="db_name"/> </p> <p> <label class="required">数据库用户名:</label><br/> <input type="text" id="db_user" class="full" value="root" name="db_user"/> </p> <p> <label>数据库密码:</label><br/> <input type="password" id="db_psw" class="full" value="root" name="db_psw"/> </p> <p> <label class="required">数据表前缀:</label><br/> <input type="text" id="db_prefix" class="full" value="momo_" name="db_prefix"/> </p> <p> <label class="required">管理员帐号:</label><br/> <input type="text" id="admin" class="full" value="" name="admin"/> </p> <p> <label class="required">管理员密码:</label><br/> <input type="password" id="password" class="full" value="" name="password"/> </p> <!--<p> <label class="required">管理员邮箱:</label><br/> <input type="text" id="email" class="full" value="" name="email"/> </p>--> <p> <label class="required">网站首页地址(带上http://):</label><br/> <input type="text" id="url" class="full" value="" name="url"/> </p> <p> <input type="submit" class="btn btn-green big" value="创建安装"/> </p> <div class="clear"> </div> </form> </section>
没有进行判断lock 。可以直接重装
现在我就拿几个站点来做实例吧:
http://www.xinhansy.com/install/http://www.dinghuiex.com/install/http://www.jincangyuan.com/install/http://www.52yuliao.com/install/http://ddgg.info/install/http://sddy888.com/install/http://www.hbmadao.com/install/http://vsobao.gotoip2.com/install/http://www.vsobao.com/install/http://www.whdingsheng.net/install/http://gongsi.youol.com/install/
以上的都可以进行重装系统http://www.xinhansy.com/install/
http://www.dinghuiex.com/install/
http://www.jincangyuan.com/install/
http://www.52yuliao.com/install/
http://ddgg.info/install/
在安装完成之后 生成一个lock然后在安装的时候判断是否已经有locak如果有lock就退出。或者安装完成之后自动删掉install文件
危害等级:无影响厂商忽略
忽略时间:2015-04-02 10:23
安装说明.txt下有,当你安装到目录后,首先运行http://localhost/momocms/install 进行安装,安装完成后,请删除install文件夹
暂无
