当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0155795

漏洞标题:海尔某接口设计缺陷可撞库,泄漏用户订单和敏感信息

相关厂商:海尔商城

漏洞作者: 路人甲

提交时间:2015-11-25 14:55

修复时间:2016-01-11 15:32

公开时间:2016-01-11 15:32

漏洞类型:设计缺陷/逻辑错误

危害等级:低

自评Rank:3

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2015-11-25: 细节已通知厂商并且等待厂商处理中
2015-11-25: 厂商已经确认,细节仅向厂商公开
2015-12-05: 细节向核心白帽子及相关领域专家公开
2015-12-15: 细节向普通白帽子公开
2015-12-25: 细节向实习白帽子公开
2016-01-11: 细节向公众公开

简要描述:

海尔某接口设计缺陷可撞库,泄漏用户订单和敏感信息

详细说明:

http://member.ehaier.com/login.html?returnUrl=http%3A%2F%2Fmember.ehaier.com%2Findex.html此处接口一开始无验证码,一定次数之后就出来了验证码

111111.png


用户名密码明文传输,测试可以撞库,这里直接贴出部分帐号证明了:

1055166122@qq.com	s1990114	849
gaosuper@qq.com gaosuper00 849
ky3239@vip.qq.com 323916 849
21026477@qq.com c19880125y 849
tomole@vip.qq.com skyyang365 849
lovenidboy@qq.com 6364372 849
29745699@qq.com xx19880110 849
1067162886@qq.com czz1919 849
29745699@qq.com xx19880110 849
88928274@qq.com ssknaeoju 849
1004990071@qq.com wang504 849
674960702@qq.com m125325 850
sasa1314520@qq.com 262366574 850
359990727@qq.com 369wqs800 850
xylz520@vip.qq.com 84185569 850
317709198@qq.com a6258657 850
join529@vip.qq.com kobehao 850
249821325@qq.com 758520 850
357606617@qq.com acm791122 850
451316105@qq.com z137788 850
530132223@qq.com js19901217 850
172893354@qq.com ahan100 850
313072000@qq.com 2861941ok 850
mwzhang@vip.qq.com zmw001226 850
729061987@qq.com abcd1234 850
498650622@qq.com whysma8 850
364369746@qq.com a6317889 850
532038500@qq.com qjy8811280 850
490369185@qq.com h19900911 850
357606617@qq.com acm791122 850
382301388@qq.com yq4353387 850
357606617@qq.com acm791122 850
234785346@qq.com 520528hz 850
627176739@qq.com wangs147258 850
754726762@qq.com jhl871005 850
540801998@qq.com tan121923 850
yukieiri731@qq.com 1987223ab 850
180651942@qq.com 698990 850
kicker@vip.qq.com wxwxwx 851
zhengwei8762@qq.com zhengwei8762 851
chenkeda@vip.qq.com 3226182 851
ihelpsoft@vip.qq.com wjyuwjyu 852
daxian500@vip.qq.com 19870614 852
www.496691417@qq.com 5561221 852
lifei0118@vip.qq.com 19850118 852
yym5789652@vip.qq.com 57896524613 853
zhanglisha@vip.qq.com 57498277 853
huangcanlin007@qq.com 345112 853
philipzeng@vip.qq.com 252525 853
delightdxl@vip.qq.com 930604 853


登录帐号证明,信息泄漏蛮严重。。

666666.png


777777.png

漏洞证明:

http://member.ehaier.com/login.html?returnUrl=http%3A%2F%2Fmember.ehaier.com%2Findex.html此处接口一开始无验证码,一定次数之后就出来了验证码

111111.png


用户名密码明文传输,测试可以撞库,这里直接贴出部分帐号证明了:

1055166122@qq.com	s1990114	849
gaosuper@qq.com gaosuper00 849
ky3239@vip.qq.com 323916 849
21026477@qq.com c19880125y 849
tomole@vip.qq.com skyyang365 849
lovenidboy@qq.com 6364372 849
29745699@qq.com xx19880110 849
1067162886@qq.com czz1919 849
29745699@qq.com xx19880110 849
88928274@qq.com ssknaeoju 849
1004990071@qq.com wang504 849
674960702@qq.com m125325 850
sasa1314520@qq.com 262366574 850
359990727@qq.com 369wqs800 850
xylz520@vip.qq.com 84185569 850
317709198@qq.com a6258657 850
join529@vip.qq.com kobehao 850
249821325@qq.com 758520 850
357606617@qq.com acm791122 850
451316105@qq.com z137788 850
530132223@qq.com js19901217 850
172893354@qq.com ahan100 850
313072000@qq.com 2861941ok 850
mwzhang@vip.qq.com zmw001226 850
729061987@qq.com abcd1234 850
498650622@qq.com whysma8 850
364369746@qq.com a6317889 850
532038500@qq.com qjy8811280 850
490369185@qq.com h19900911 850
357606617@qq.com acm791122 850
382301388@qq.com yq4353387 850
357606617@qq.com acm791122 850
234785346@qq.com 520528hz 850
627176739@qq.com wangs147258 850
754726762@qq.com jhl871005 850
540801998@qq.com tan121923 850
yukieiri731@qq.com 1987223ab 850
180651942@qq.com 698990 850
kicker@vip.qq.com wxwxwx 851
zhengwei8762@qq.com zhengwei8762 851
chenkeda@vip.qq.com 3226182 851
ihelpsoft@vip.qq.com wjyuwjyu 852
daxian500@vip.qq.com 19870614 852
www.496691417@qq.com 5561221 852
lifei0118@vip.qq.com 19850118 852
yym5789652@vip.qq.com 57896524613 853
zhanglisha@vip.qq.com 57498277 853
huangcanlin007@qq.com 345112 853
philipzeng@vip.qq.com 252525 853
delightdxl@vip.qq.com 930604 853


登录帐号证明,信息泄漏蛮严重。。

666666.png


777777.png

修复方案:

加密

版权声明:转载请注明来源 路人甲@乌云


漏洞回应

厂商回应:

危害等级:中

漏洞Rank:10

确认时间:2015-11-25 15:01

厂商回复:

多谢!

最新状态:

暂无


漏洞评价:

评价