当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2012-010074

漏洞标题:粉丝网多个分站存在猪肉点,可获得用户的重要信息。

相关厂商:粉丝网

漏洞作者: 雪慧飞

提交时间:2012-07-24 10:57

修复时间:2012-09-07 10:57

公开时间:2012-09-07 10:57

漏洞类型:SQL注射漏洞

危害等级:中

自评Rank:7

漏洞状态:未联系到厂商或者厂商积极忽略

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2012-07-24: 积极联系厂商并且等待厂商认领中,细节不对外公开
2012-09-07: 厂商已经主动忽略漏洞,细节向公众公开

简要描述:

粉丝网多个分站存在猪肉点,可获得用户的重要信息。类似的注入点还有很多,站挺大安全性挺差!安全意识忒弱~加强一下吧。

详细说明:

粉丝网分站猪肉列表:
http://fangtan.ifensi.com/newzhibo.php?showid=611
http://cyworld.ifensi.com/cystars/fansclass/pic_list.php?active_type=2&cyid=2006849514
http://photo.ifensi.com/album.php?action=show&aid=21441
http://news.ifensi.com/vote/vote_bicarsa.php?voteid=1534
http://fangtan.ifensi.com/newzhibo.php?showid=611
http://fad.ifensi.com/article.php?id=315425

漏洞证明:

Target: 		http://photo.ifensi.com/album.php?action=show&aid=21441
Host IP: 122.11.58.80
Web Server: nginx
DB Server: MySQL
Current DB: cmsdb


Tables:
activity_comment
aoyuntp
application
article
article_view
article_view_count
article_view_db
article_view_logs
articles_rollback
attention
bjse_bugreport
cache
catalog
channel_info
collection
common_part
constellations
consult_calendar_article
consult_calendar_catelog
consult_nominate_url
dict_C2E
dict_E2C
digg
dingyue_cy
dingyue_fad
duty
expression
fcdp
flash_game_favrites
flash_game_info
flash_game_summary
focus_images
focus_img_catalog
foodbase
foodcata
ftv_playstatus
ftv_relate_group
ftv_star
game_playstatus
game_point_list
game_point_list_new
hlm_vote
hot_tags
huantoupic
jifenqqgame
job
jobext
jobinfor
life_show_catalog
life_show_channel
life_show_content
life_show_question
life_show_rating
life_show_view
log_hits
media_source
music_cddafen
music_review
music_vote
newarticle
newarticle_ext
newarticle_extends
newcatalog
newmusic_dynamic
oper_user
park_companyinfo
park_guestmessage
photo
picarticle_cata
picarticle_ext
pro_engpeople
productinfo
qq3guo
resscore
review
rss_catalog
rss_content
rss_source
scroll_text
siteurl
song
special_vote_options
sportsbase
sportscata
starrecommend
tags_data
tags_keyword
tags_keyword_check
tb_email_address
temp_index_count
template
template_common
templates_rollback
tv_comment
tv_digg
upstarname
upstartpl
user_purview
user_purview_users
view
view_log
vote
vote_exceptive
vote_logs
vote_options
vote_text
voteitem
voteresult
votes
votetext
votetitle
worldcup_baby_info
worldcup_game
worldcup_point
worldcup_teaminfo
xmllist
zhuaqu
zt_music
zt_record
zt_vote
zt_votelog


修复方案:

全站做一下安全检测吧,该修的修该补的补!

版权声明:转载请注明来源 雪慧飞@乌云


漏洞回应

厂商回应:

未能联系到厂商或者厂商积极拒绝