乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-01-19: 细节已通知厂商并且等待厂商处理中 2015-01-19: 厂商已经确认,细节仅向厂商公开 2015-01-29: 细节向核心白帽子及相关领域专家公开 2015-02-08: 细节向普通白帽子公开 2015-02-18: 细节向实习白帽子公开 2015-03-05: 细节向公众公开
mei you wubi le
http://agents.easou.com/agents/ums/logon.jsp宜搜代理商管理系统http://agents.easou.com/resin-doc/examples/security-basic/viewfile?file=WEB-INF/web.xml
<pre><web-app xmlns="http://caucho.com/ns/resin"> <!-- - Instantiates the resource. The resource will have its - setData called for the value parameter. - - The resource will be registered with JMX with the test:type=Basic - name. --> <resource mbean-name="example:name=basic" type="example.Basic"> <init> <data>Tutorial Example</data> </init> </resource></web-app></pre>
http://agents.easou.com/resin-doc/examples/security-basic/viewfile?file=WEB-INF/password.xml
<pre><!-- password.xml --><authenticator> <!-- professors --> <user name='snape' password='I7HdZr7CTM6hZLlSd2o+CA==' roles='professor,slytherin'/> <user name='mcgonagall' password='4slsTREVeTo0sv5hGkZWag==' roles='professor,gryffindor'/> <!-- students --> <user name='harry' password='uTOZTGaB6pooMDvqvl2Lbg==' roles='student,gryffindor'/> <user name='dmalfoy' password='yI2uN1l97Rv5E6mdRnDFwQ==' roles='student,slytherin'/> <!-- alumni --> <user name='lmalfoy' password='sj/yhtU1h4LZPw7/Uy9IVA==' roles='alumni,gryffindor'/></authenticator></pre>
危害等级:中
漏洞Rank:10
确认时间:2015-01-19 14:33
谢谢指出,我们会及时改正
暂无
