漏洞概要 关注数(24) 关注此漏洞
缺陷编号:wooyun-2015-0129213
漏洞标题:ITPUB一处接口可撞裤(测试10000成功800)
相关厂商:IT168.com
漏洞作者: 郭斯特
提交时间:2015-07-26 10:40
修复时间:2015-09-10 09:24
公开时间:2015-09-10 09:24
漏洞类型:后台弱口令
危害等级:高
自评Rank:20
漏洞状态:厂商已经确认
漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]
Tags标签: 无
漏洞详情
披露状态:
2015-07-26: 细节已通知厂商并且等待厂商处理中
2015-07-27: 厂商已经确认,细节仅向厂商公开
2015-08-06: 细节向核心白帽子及相关领域专家公开
2015-08-16: 细节向普通白帽子公开
2015-08-26: 细节向实习白帽子公开
2015-09-10: 细节向公众公开
简要描述:
RT
详细说明:
接口:http://blog.itpub.net/site/login/
无验证码 无限制
可以fuzzing
漏洞证明:
下面直接贴出测试成功的账户 经测试 返回长度值为7开头的都是可成功登录的。
Payload1 Payload2 Length
spoondrift888 spoondrift888 7785
jimzang@263.net jimzang@263.net 7775
adsfasdfdasfasd adsfasdfdasfasd 7773
dreamer_2002 dreamer_2002 7756
oracle_chang oracle_chang 7737
freemail2001 freemail2001 7707
sickdoctor sickdoctor 7699
flycontrol flycontrol 7696
cslljoracle cslljoracle 7687
iloveoracle iloveoracle 7677
marcozhong marcozhong 7674
renzhou8888 renzhou8888 7672
caiyanhuang caiyanhuang 7667
chenzy_2001 chenzy_2001 7665
johnsmith johnsmith 7664
honey_tongued honey_tongued 7660
simulate simulate 7657
jqfu2000 jqfu2000 7651
armandkao armandkao 7650
leeichang leeichang 7647
riverqian riverqian 7644
davishuang davishuang 7642
ftjm532c ftjm532c 7641
gdprince gdprince 7641
networkself networkself 7638
qiuyue2001 qiuyue2001 7638
runaway runaway 7638
catching catching 7637
lianguan lianguan 7637
seniordba seniordba 7637
pengst1 pengst1 7636
cisco2001 cisco2001 7635
jobo55_mimi jobo55_mimi 7635
db2user777 db2user777 7634
liujianjun liujianjun 7634
michelle73 michelle73 7632
asusjob1980 asusjob1980 7631
erplearner erplearner 7629
kuaixian kuaixian 7629
patricia patricia 7629
stwoking stwoking 7629
lijingzhi lijingzhi 7628
bigwizard bigwizard 7627
jializheng jializheng 7627
louislei louislei 7625
michaelwatco michaelwatco 7625
23423423423 23423423423 7623
guohaiyang guohaiyang 7623
ocpisnothing ocpisnothing 7623
peterdeng peterdeng 7622
python12 python12 7621
holydrgon holydrgon 7620
dbapaulhsu dbapaulhsu 7619
itpubguest itpubguest 7618
panwei1999 panwei1999 7617
lgh981348 lgh981348 7616
liuyxit liuyxit 7616
stoneli stoneli 7616
caishiyou caishiyou 7615
knight_li knight_li 7615
itpass.net itpass.net 7612
natsteel natsteel 7611
scottjenny scottjenny 7610
sachin404 sachin404 7609
jiangshimin jiangshimin 7608
liwensung liwensung 7608
another another 7607
skyliu123 skyliu123 7606
solaris123 solaris123 7606
limaoshen limaoshen 7605
manydogs manydogs 7605
peterding peterding 7604
BlueBerry BlueBerry 7603
jason918 jason918 7603
andrew_lin andrew_lin 7602
gowithout gowithout 7602
czygrace czygrace 7601
goodspeed goodspeed 7601
johnychen johnychen 7601
lijing1279 lijing1279 7601
macro_zeng macro_zeng 7601
bigsnoopy bigsnoopy 7598
borisjai borisjai 7597
hdlirong hdlirong 7597
stephen418 stephen418 7597
sunjm999 sunjm999 7597
lotuspalm lotuspalm 7596
infoGroup infoGroup 7595
redhat71 redhat71 7595
dataspring dataspring 7593
fannwong fannwong 7593
guoyutong guoyutong 7592
riambsoft riambsoft 7592
dacaifu dacaifu 7591
ding123 ding123 7591
hanzhen hanzhen 7591
oracle2002 oracle2002 7590
19746311 19746311 7589
pan_year pan_year 7588
alonelyfox alonelyfox 7587
doudou77 doudou77 7587
guowushi guowushi 7587
stonelee stonelee 7587
goahead goahead 7586
study2002 study2002 7586
Sonicant Sonicant 7585
baijuncai baijuncai 7584
casperhua casperhua 7584
jasamin jasamin 7584
sunny99099 sunny99099 7584
erbadao erbadao 7583
powerrose powerrose 7582
rockybin rockybin 7581
rodney rodney 7581
aspaspasp aspaspasp 7579
cutelook cutelook 7579
dhuwym dhuwym 7579
joingoal joingoal 7579
sundan sundan 7579
bethune bethune 7578
Ryman007 Ryman007 7577
annoyboy annoyboy 7577
eagle86 eagle86 7577
happyhero happyhero 7577
ccieccie ccieccie 7576
czlinjian czlinjian 7574
dumeijuan dumeijuan 7574
hugang1998 hugang1998 7574
lyoracle lyoracle 7573
lzdmail314 lzdmail314 7573
linyasa linyasa 7572
lizengyu lizengyu 7572
sir_sgh sir_sgh 7572
bluefire bluefire 7570
skylevel skylevel 7570
dlockhuo dlockhuo 7569
dongxiao dongxiao 7568
07121999 07121999 7567
christan christan 7567
epri_zzy epri_zzy 7567
hdw1978 hdw1978 7567
hzhibin hzhibin 7567
downbook downbook 7566
jackywu jackywu 7566
leiennet leiennet 7565
lixl211 lixl211 7565
megson megson 7565
rainbowy rainbowy 7565
linpower linpower 7564
suijin6 suijin6 7564
amaoagou amaoagou 7563
bigc2001 bigc2001 7563
franklcs franklcs 7563
gamegod gamegod 7563
nbgyf nbgyf 7562
nickguo nickguo 7562
fatmonkey fatmonkey 7561
jevonsma jevonsma 7561
andyliudc andyliudc 7559
catalina catalina 7559
daviddw daviddw 7559
bzr2004 bzr2004 7558
henryber henryber 7558
s136021 s136021 7558
sdqiang sdqiang 7558
dragonfbn dragonfbn 7557
liwen123 liwen123 7557
lxb123 lxb123 7557
cftang cftang 7556
gongjan gongjan 7556
javasir javasir 7556
notebook notebook 7555
scoalex scoalex 7555
cksheng cksheng 7554
itpub2002 itpub2002 7554
lgs2000 lgs2000 7554
noyes noyes 7554
levels levels 7553
lidaog lidaog 7553
chenshuo chenshuo 7552
guofuning guofuning 7552
logical logical 7552
luzhong luzhong 7552
dation dation 7551
dbrose dbrose 7551
overbible overbible 7551
phil2002 phil2002 7551
shorehill shorehill 7551
laoben laoben 7550
malon111 malon111 7550
chinalzk chinalzk 7549
cncqcmblp cncqcmblp 7549
fx5123 fx5123 7549
laoren laoren 7549
ocpdba9i ocpdba9i 7549
chiang chiang 7548
cwh888 cwh888 7548
atm7500 atm7500 7547
cafecat cafecat 7547
llllll llllll 7547
fanrose fanrose 7546
joechen21 joechen21 7546
kayyong kayyong 7546
rockpet rockpet 7546
ss0229 ss0229 7546
Joe T Chan Joe T Chan 7545
anthony1 anthony1 7545
hackaming hackaming 7545
lemons lemons 7545
lidaog98 lidaog98 7545
rrxxpp rrxxpp 7545
sbwangxu sbwangxu 7545
info2lee info2lee 7544
liaojun76 liaojun76 7543
marthcao marthcao 7543
keoworld keoworld 7542
kookddt kookddt 7542
lee_roger lee_roger 7541
aaalili aaalili 7540
dyyuan dyyuan 7540
chchow chchow 7539
jason689 jason689 7539
kevinxxx kevinxxx 7539
kysuser kysuser 7539
lingling lingling 7539
lwn123 lwn123 7539
chen.sx chen.sx 7538
fancong fancong 7538
majietao majietao 7538
cixijimmy cixijimmy 7537
dlxyjqm dlxyjqm 7537
dyfever dyfever 7537
juelson juelson 7537
39401 39401 7536
kimble kimble 7535
kongjie kongjie 7535
lalahuang lalahuang 7535
qpzqpz qpzqpz 7535
emailhyt emailhyt 7534
orahome orahome 7534
sonycdr sonycdr 7534
14242362 14242362 7533
herogyf herogyf 7533
dircls dircls 7532
dzhmfc dzhmfc 7532
flycat flycat 7532
huxuefei huxuefei 7532
ilovgame ilovgame 7532
simonkit simonkit 7532
720821 720821 7531
Saintking Saintking 7531
adam319 adam319 7531
reepool reepool 7531
cjline cjline 7530
samsong samsong 7530
156830 156830 7529
eidolon eidolon 7529
atao atao 7527
lijunke lijunke 7527
qwerty22 qwerty22 7527
rewaxie rewaxie 7527
happy77 happy77 7526
mtyxyang mtyxyang 7526
rainight rainight 7526
dannycai dannycai 7525
liucoco liucoco 7525
liwdok liwdok 7525
billjyy billjyy 7524
genjes genjes 7524
get_more get_more 7524
hifis hifis 7524
kqmzfde kqmzfde 7524
linbj linbj 7524
oooosaka oooosaka 7524
dongrx dongrx 7523
genghua genghua 7523
gztitan gztitan 7522
hisalong hisalong 7522
jackman jackman 7521
kulimu kulimu 7521
struts struts 7521
black5 black5 7520
greenzxq greenzxq 7520
qaswedfr qaswedfr 7520
songshl songshl 7520
lyipac lyipac 7519
sticzyh sticzyh 7519
anemy anemy 7518
ccchoo ccchoo 7518
dqpiscy dqpiscy 7518
jasduke jasduke 7518
airfei airfei 7517
alexleo alexleo 7517
jienao jienao 7517
5214053 5214053 7516
baynifk baynifk 7516
canddy canddy 7516
denghm denghm 7516
jump10 jump10 7515
abask abask 7514
ccnase ccnase 7514
hotfloor hotfloor 7514
jeallan jeallan 7514
600601 600601 7513
hdkdly hdkdly 7513
laerson laerson 7513
ljxgogo ljxgogo 7513
mikeliu mikeliu 7513
shuidy shuidy 7513
bobbywan bobbywan 7512
ccxzq ccxzq 7512
pbabi pbabi 7512
redleaf redleaf 7512
agashow agashow 7509
chenzj chenzj 7509
firetm firetm 7509
giming giming 7509
jinie jinie 7509
ljjzbhz ljjzbhz 7509
relea relea 7509
selley selley 7509
meggie meggie 7507
jylern1 jylern1 7506
sap1999 sap1999 7506
hkczrh hkczrh 7505
hpyhpy hpyhpy 7505
orbit123 orbit123 7505
piziqiu piziqiu 7505
cmutao cmutao 7503
coco007 coco007 7503
daliliu daliliu 7503
junweih junweih 7503
sunhui sunhui 7503
8500937 8500937 7502
aaacde aaacde 7502
hjh1203 hjh1203 7502
libo0643 libo0643 7502
lxj529 lxj529 7502
QINGWEI QINGWEI 7501
jimyliu jimyliu 7501
legenx legenx 7501
lhg lhg 7501
sprayczy1 sprayczy1 7501
itpass itpass 7500
caofei caofei 7499
dining dining 7499
060 060 7498
oaix oaix 7498
orchard orchard 7498
ccxxcc ccxxcc 7497
jakey jakey 7496
jyh1971 jyh1971 7496
ljintel ljintel 7496
springy springy 7495
oimio oimio 7494
chwl chwl 7493
kkning kkning 7493
pwxgao pwxgao 7493
stuart stuart 7493
elufar elufar 7492
cyble cyble 7490
despot despot 7490
linmu linmu 7490
njdevil njdevil 7490
changes changes 7489
hmlong hmlong 7489
keyword keyword 7489
richter richter 7489
sjames sjames 7489
abinla abinla 7488
dinghj dinghj 7488
ddpaul ddpaul 7487
evepolo evepolo 7487
ffddww ffddww 7487
lxlhl lxlhl 7487
ssyang ssyang 7487
gjing gjing 7486
amwmyd amwmyd 7485
fkezhen fkezhen 7485
lcslcs lcslcs 7485
sap888 sap888 7485
hfeihong hfeihong 7484
hotcpu hotcpu 7484
lava lava 7484
niuzb niuzb 7484
duck duck 7483
acdsee acdsee 7482
qqqqaass qqqqaass 7482
newppp newppp 7481
andyzt andyzt 7480
liulh liulh 7480
riota riota 7480
sunc68 sunc68 7480
hahale hahale 7479
hq1107 hq1107 7479
hueyni hueyni 7479
ora8i ora8i 7478
preta preta 7478
farnice farnice 7476
juling juling 7476
sealon sealon 7476
blade blade 7475
garyhe garyhe 7475
jarod22 jarod22 7475
cldes cldes 7473
beishi beishi 7472
chyj95 chyj95 7472
jamper jamper 7472
718001 718001 7471
jonyxie jonyxie 7471
qaoqao qaoqao 7471
seeler seeler 7471
shwei shwei 7471
dalu dalu 7470
lwjtxw lwjtxw 7470
hurry hurry 7469
jimyho jimyho 7469
XXYY XXYY 7467
nihui nihui 7467
didadi didadi 7466
hyde hyde 7466
hostage hostage 7465
932516 932516 7464
YD518 YD518 7464
kongde kongde 7464
liusy liusy 7464
mlrose mlrose 7464
ops ops 7464
shaojl shaojl 7464
bbdba bbdba 7462
lyx_9 lyx_9 7461
mcse2k mcse2k 7460
rsmtl rsmtl 7460
saml saml 7460
ansea ansea 7459
cwm303 cwm303 7459
langxc langxc 7459
lazyren lazyren 7459
machao machao 7459
bugbut bugbut 7458
hqlww hqlww 7458
liuyjs liuyjs 7458
redguy redguy 7458
shijhl shijhl 7458
beking beking 7457
qqq qqq 7455
aaazc aaazc 7454
hank00 hank00 7454
chen9 chen9 7453
frank frank 7453
hdhx hdhx 7453
npzfly npzfly 7453
caodyx caodyx 7452
gggg gggg 7451
jzhuo jzhuo 7451
ll128 ll128 7451
shencs shencs 7451
chw73 chw73 7449
newlf newlf 7449
shl716 shl716 7449
jhxck jhxck 7448
Spryray Spryray 7447
csmiao csmiao 7447
ender ender 7447
hz122 hz122 7447
hrice hrice 7446
kmpanda kmpanda 7445
gxlyxy gxlyxy 7444
icome icome 7443
ora8 ora8 7443
cdrxl cdrxl 7442
hee hee 7442
sirous sirous 7442
kxh3000 kxh3000 7441
dumps dumps 7439
HUST HUST 7438
eaye eaye 7437
okl okl 7437
123090 123090 7436
lkm lkm 7436
andon andon 7435
cjlware cjlware 7435
lkm5 lkm5 7435
hmncn hmncn 7433
flow1 flow1 7431
leoxue leoxue 7431
0405 0405 7429
qazw qazw 7429
515 515 7426
abbot abbot 7426
inghao inghao 7426
neoera neoera 7426
amdc amdc 7422
rjf rjf 7420
hyla hyla 7419
jylan jylan 7415
liucn liucn 7415
lida lida 7409
slbs slbs 7408
sian sian 7407
bfs bfs 7406
mcheng mcheng 7406
axf axf 7404
aolt aolt 7402
ssley ssley 7399
putit putit 7395
asobu asobu 7389
some some 7389
lcz lcz 7388
cti cti 7365
密码123456
Payload Length
qazwsxedc_itpub 7804
fly_confidence 7786
ontheway_djz 7769
LALALALA_itpub 7756
hexiangxin2002 7750
chungho.chang 7749
gogogogo_itpub 7744
dorothy_itpub 7739
dushiguiying 7738
administrator_i 7731
bashfulboy-pb 7724
SilverKnight 7720
william_huang 7712
darkhorse_dh 7708
forever_itpub 7703
chenxuwei99 7697
kingwang_itpub 7695
hanfangming 7694
davidjoin 7690
Bright_itpub 7684
bugaoxing123 7683
by00000000 7682
fatboy_itpub 7680
musicalzhu 7679
lunhui_itpub 7672
chenji_itpub 7670
namelysweet 7666
johnny_itpub 7665
sungirl_ydn 7665
zzqrabbit 7664
pennyzhueng 7663
chinatiger 7662
seeker0733 7662
shenzhou21 7658
wangfcisco 7656
wangyb-pb 7655
chenaizhen 7654
luocaiquan 7654
zzzzxxxx123456 7653
michael1020 7652
birdfly_itpub 7651
idiotoralce 7649
michael_kane 7649
wangzheng-pb 7649
yuyulily 7649
lakeheart 7647
blacksmith-pb 7645
andyhuang-pb 7642
pl_cheng 7639
victorlu 7639
belleavon 7638
samsara_itpub 7638
guyang2000 7637
samsonwang 7637
jack_bing 7634
xue_itpub 7634
hello baby 7633
zhoudasi 7633
l_chuanfei 7632
chichi_itpub 7631
cn88888888 7629
Zhang_Feel 7627
hao_itpub 7627
mrchenzhen 7626
naridava123 7623
winner_itpub 7623
Coolfigo 7621
lanlan_lan 7621
zhouw_81 7619
JyLiuPeng 7618
beny_itpub 7618
sylvian_hn 7618
stoneskin 7617
chetsailou 7616
zys_huamai 7616
chshanghai 7615
jacky_chen 7614
oceancross 7611
zhangzch 7611
dreamwolf 7610
flagholder 7607
michael_nh 7607
lingilnggo 7606
new_network 7605
robin123456 7605
dspjava 7604
interview 7604
zhangjialin 7604
elearning 7602
chinaman 7600
qweqweqwe 7600
susesuse 7599
sap199999 7598
wsj123456 7596
chenzhilu 7595
ciscogear 7595
LiuXiaoHe 7594
ww_ww_ww 7593
youngmoon 7592
linjiework 7591
happylemon 7590
minerkitty 7589
eberhard 7587
justdoit4 7587
kingpin 7586
stevenchow 7585
fatcat123 7584
stevengao 7583
anson1000 7581
bodyguard 7581
cdwgrllj 7581
last_tiger 7581
xu_acorn 7580
tozhangxy 7579
yaojunbj 7578
zengwuwang 7578
zhaozijiang 7577
superzwb 7576
xjtufans 7576
pipiwa 7575
dfdzwfzz 7574
elychaser 7571
porterlin 7571
hu_anny-pb 7569
phy16250 7569
cheshuai 7568
joan_swj 7567
dragon111 7566
hjp_itpub 7566
tony00871 7566
davidluo 7563
zhya312 7563
cyber 7562
tomsoya 7562
eyes on me 7560
bob-chen 7558
protege 7558
yungeng 7558
toptimes 7557
xiaocao 7555
marshal6 7553
passcert 7552
smiling 7552
blackwh 7547
ccie_1000 7547
zhangjr 7547
qxiong 7546
fangzhsh 7545
leunghao 7545
meng1121 7545
it355.com 7543
sunluyan 7543
netwarn-pb 7542
erikw 7540
merrylsc 7538
PENA 7537
ccyang 7537
rick111 7537
zhao_yu 7537
chiesa-pb 7536
dick264 7536
distance 7536
xjohnson 7536
yhlllf 7535
tzh2001 7534
wjy_007 7534
wwwfwww 7534
genius 7533
zhangjason 7533
wonght 7532
bluetony 7530
jinhai-pb 7530
busbby 7529
lee2002 7528
shenmoxi 7528
amag1 7524
itsyh 7524
littler 7522
longfor 7522
passerby 7522
yusheng 7522
Diamond 7520
snowboy 7519
luotian 7518
seavoice 7518
limin001 7517
jwlok 7516
zhai_hb 7516
hobo75 7515
honney 7515
catorja 7514
zshengh 7513
doudo 7512
puyopuy 7512
baixq 7511
userman-pb 7511
genswan 7509
joe661 7509
chenbing 7508
liangzf 7507
zyxwvu 7507
liijing 7506
parry 7506
xbking 7505
yesp 7505
yangph 7503
liujg428 7502
apple77 7501
fjfeng 7501
lw8370 7501
oasisor 7501
zjjszw 7501
hxpzf 7500
tfchoi 7498
peter 7497
smith 7497
jiangui 7496
cengs1 7495
helpme 7495
joefans 7495
afocus 7493
kkgg-pb 7492
afqh 7490
wgrllj 7490
yupch 7490
leonshi 7489
wenfufa 7489
zfw-pb 7489
msccl 7486
owenko 7485
shardy 7485
mazrmc 7484
quhao-pb 7484
zf0896 7482
kaigleiu 7480
zpwyt 7480
mt78 7479
soimer 7479
ybleng 7479
lhborn 7478
neoshi 7476
cello1 7475
waj12 7471
SD_OM 7467
lzming 7466
fujiang 7465
diney 7464
showin 7464
facewu 7462
hikao 7462
non33 7462
dingok 7460
pytele 7459
ttgie 7458
yntty 7458
zqzf 7458
ericjc 7456
hhqfj 7456
bs120 7454
slight 7453
w_j001 7452
chiem 7451
gzfjh 7451
wuxin 7448
Emey 7447
yzf01 7445
dqxjy 7444
CooWoo 7443
mikelei 7443
HUNGBO 7441
LAB 7437
njglc 7437
eveen 7435
sppr 7435
wguan 7435
ilth 7434
ashu 7429
hmo 7429
YANGL 7425
aman 7425
wlnh 7425
gfox 7423
lblxm 7423
mmldn 7423
nlec 7421
yfyf 7421
PQT 7420
ppmm 7420
qay 7420
orakr 7417
gold 7415
ghoul 7414
abird 7411
mayl 7410
xhsun 7409
simp 7403
albc 7393
ddone 7393
tp11 7388
tyo 7388
coub 7382
dwg 7376
zen 7367
lth 7365
kou 7355
修复方案:
验证码 或者token
版权声明:转载请注明来源 郭斯特@乌云
漏洞回应
厂商回应:
危害等级:高
漏洞Rank:15
确认时间:2015-07-27 09:23
厂商回复:
多谢帮助,技术会尽快处理。
最新状态:
暂无