当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2016-0170923

漏洞标题:P2P金融安全之联金所某系统可Getshell

相关厂商:联金所

漏洞作者: 擼管俠

提交时间:2016-01-18 19:01

修复时间:2016-03-05 09:52

公开时间:2016-03-05 09:52

漏洞类型:系统/服务补丁不及时

危害等级:高

自评Rank:11

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2016-01-18: 细节已通知厂商并且等待厂商处理中
2016-01-20: 厂商已经确认,细节仅向厂商公开
2016-01-30: 细节向核心白帽子及相关领域专家公开
2016-02-09: 细节向普通白帽子公开
2016-02-19: 细节向实习白帽子公开
2016-03-05: 细节向公众公开

简要描述:

详细说明:

ABCABBD9-C8CA-47B3-91A0-AB782D77E6F3.png


A0E01E29-8302-4AB2-8626-58E6887EFC1F.png

大数据平台。感觉里面的信息应该有海量吧

<miwscq>
<system desc="系统配置参数">
<parameter name="basePath" desc="文件保存基础目录">E:/basePath/upload</parameter>
<!--
 <parameter name="basePath" desc="文件保存基础目录">/home/upload</parameter> 
-->
<db desc="金融联贷数据库连接池配置参数">
<parameter name="id" desc="本连接池的唯一标识、主库">system</parameter>
<parameter name="url" desc="数据库服务器的连接地址">
<![CDATA[ jdbc:oracle:thin:@192.168.1.207:1521:orcl ]]>
</parameter>
<parameter name="user" desc="数据库登录帐号">JRLD</parameter>
<parameter name="password" desc="数据库登陆密码">JRLD</parameter>
<parameter name="maxIdle" desc="最大空闲数">5</parameter>
<parameter name="minIdle" desc="最小空闲数">3</parameter>
<parameter name="initialSize" desc="连接池初始大小">3</parameter>
<parameter name="maxActive" desc="最大连接数">5</parameter>
<parameter name="maxWait" desc="连接空闲最大时间">5</parameter>
<parameter name="driverClassName" desc="驱动程序">oracle.jdbc.driver.OracleDriver</parameter>
</db>
</system>
<ws>
<parameter name="channelService_url" desc="微贷接口url">
http://192.168.10.188:10101/mfbms-app-web/webservice/ChannelService
</parameter>
<!--
 <parameter name="channelService_url" desc="微贷接口url">http://192.168.7.249:8080/mfbms-app-web/webservice/ChannelService</parameter> 
-->
<!--
 <parameter name="channelService_url" desc="微贷接口url">http://192.168.10.188:8891/mfbms-app-web/webservice/ChannelService</parameter> 
-->
<!--
 <parameter name="channelService_url" desc="微贷接口url">http://192.168.10.188:10101/mfbms-app-web/webservice/ChannelService</parameter> 
			<parameter name="channelService_url" desc="微贷接口url">http://58.250.66.188:8974/mfbms-app-web/webservice/ChannelService</parameter> 
-->
<parameter name="channelService_url" desc="微贷接口url">
http://192.168.10.188:10101/mfbms-app-web/webservice/ChannelService
</parameter>
<!--
 <parameter name="channelService_url" desc="微贷接口url">http://58.250.66.188:8974/mfbms-app-web/webservice/ChannelService</parameter> 
			<parameter name="channelService_url" desc="微贷接口url">http://192.168.3.241:8080/mfbms-app-web/webservice/ChannelService</parameter> 
-->
<parameter name="channelService_user" desc="微贷接口url用户">YIDONG</parameter>
<parameter name="channelService_pwd" desc="微贷接口url密码">abcd1234</parameter>
<!--
 <parameter name="channelService_user" desc="微贷接口url用户">YIDONG</parameter> 
			<parameter name="channelService_pwd" desc="微贷接口url密码">abcd1234</parameter> 
-->
<parameter name="channelService_thredTimeOn" desc="微贷接口同步用户组织机构等调用时间">8640000</parameter>
<parameter name="channelService_thredTimeIn" desc="微贷接口同步申请单调用时间">300000</parameter>


7CB99F3F-EC06-49B0-8D96-211D1E61082E.png


其中泄漏了微信配置信息

String corpid="wx1fd451dde90e7390";
String corpsecret="kvCDTEQJYEWmcxQihRVIvMCQ1SDsYAvaNSzzQz00sYU7lHwwnkYT873YIb7HTLKs";


<Resource auth="Container" driverClassName="oracle.jdbc.driver.OracleDriver" maxActive="100" maxIdle="30" maxWait="10000" name="jdbc/oracle2" password="JRLD3214" type="javax.sql.DataSource" url="jdbc:oracle:thin:@192.168.10.217:1521:jrldDB" username="jrld"/>

漏洞证明:

http://wf.uf-club.com:8081/robots.txt

7945A37E-5755-414E-98D1-9CD065FAAA2D.png


3F681D16-13F0-4820-9643-8BB24803501B.png

传说可以提现

DC4E90F0-6F46-4C5F-9989-BDF741720533.png

38个数据库

55F05BF8-C945-48E1-95E7-26A402D54521.png

177个用户

1059	15000739407	4d5257e5acc7fcac2f5dcd66c4e78f9a	金际翔	310115198312090930	o1r6cuJZ_Q1Ry1SX7X3eaZ21rH_A   2015-01-26 17:26:02.0     
1062	18128859291	5dfe2f62f148f310edc041119f0910bb	叶文	440624197604250017	o1r6cuJsJnIvezgFTD6I9eVe9ob4   2015-01-28 16:00:49.0     
1054	15921536983	5c8e0ff0c6cc88c868e4b7b034b1e070	王磊	610115199003037779	o1r6cuCjGS50FtUaihHsz5U7Vw50   2015-01-17 09:30:32.0     
1063	13603020494	e10adc3949ba59abbe56e057f20f883e	罗平	430422199103303575	o1r6cuDsR8LYyY5lXZdIwkMQOOOw   2015-01-28 16:20:00.0     
1055	13652425292	57905db1080c705a84ef22fc9980fb60	唐诚武	440882198009203012	o1r6cuKlI6Yle5RO7uD2qCpCokPk   2015-01-18 15:12:07.0     
1065	13659834965	24505605184e5da5300af486432dda1d	胡文龙	422121198203081212	o1r6cuECmXTVFuiqnK-s00zoPwyE   2015-02-09 15:34:31.0     
1066	15800963898	e35cf7b66449df565f93c607d5a81d09	俞振萍	310111196512131237	o1r6cuJz38Nx5Gu6u2m79N_5BWGw   2015-02-11 02:44:38.0     
1067	18871850047	8eeb943c96fdbdfb7d3f61016bf83f3e	张锦文	421023198505278316	o1r6cuJcFuBR-JOmDqlU7WeZdKGA   2015-02-11 03:52:56.0     
1079	15977749512	34777de0c266ba73edc5629db6217c36	李冰	450111198403201822	o1r6cuPJWco2MSHKXzzTvfuwTjSA   2015-03-10 18:12:17.0     
4053	13825802222	95c0fb5d222b2e502b8630e2590f480e	肖育儿	440521197607103130	o1r6cuCLGxlMemxJc1nGoxVFonZk   2015-03-26 06:21:38.0     
4055	13878105375	fbe82c4fa52eccab470f74fbd581fda7	李万军	610526197811116717	o1r6cuC3kZ2siGGvwVkTN1evLLSs   2015-03-26 18:31:10.0     
4057	15820110380	f97ac67e86036b8aca1f57e061d6fd84	李启冰	440221199206123512	o1r6cuJUG--EhmLZUwbgPDnUngc4   2015-03-30 17:12:19.0     
4071	13924948873	3e8db43f4e6d6ffa422d0b2fa2bbab49	金雅峰	340224197101120012	o1r6cuCQ1fpkndM08r8bYpXPRG8Q   2015-04-14 20:33:51.0     
4073	15979192334	00e04cadbbf7c8fe1ca7e30f06fe7a25	陈以龙	360121199508161535	o1r6cuAuZk2k2zA0dGqrzutqQRac   2015-04-16 22:02:30.0     
4075	15015512344	aeee615e6c97ced60177f15a4d5823d5	杨文锦	445281199411274425	o1r6cuMqQHGn7X4Ng5-ip-4UzmYo   2015-04-19 04:32:22.0     
4076	18956012880	5eef071e804504cd4e35990560e3148b	桂峰	420205198504166133	o1r6cuKEh3W60OlJIXXb9GqKXJlo   2015-04-20 12:45:39.0     
4081	13927298629	a329ee82852dbef99e980c44772cdf1d	梁杰文	440681199003145955	o1r6cuCfU0hLtl_tUHkihI0KVtW0   2015-04-24 17:00:47.0     
5050	13427002755	c8337730bd331772fa9dd377b99cad75	关健懿	442000198912034626	o1r6cuB9Gkoqk1Xtz-dCld17kddQ   2015-05-20 10:39:38.0     
6063	13570931818	d9454632e1044e315dca2d4d28dbda8f	刘涛	522121199102050212	o1r6cuO7ODEd9R4bwQwvR4znpsmQ   2015-06-16 12:00:24.0     
7050	13529410401	5ce3ae9ca97c857cbc022271a2106bc7	贺剑萱	532329199112210922	null   2015-06-17 00:02:39.0     
7051	15271402690	15e889b507b7261dd15b7a7728a037d2	梁勇	429006198211262790	o1r6cuJoLgo9iCUVVXAExRk7NXWU   2015-06-17 08:50:10.0     
7052	13708329069	c7319f39a594dc84afb4fdc7d369a5c6	林晖	510214196902091711	o1r6cuKuC_RHnGbxLJe2XI0mvFcE   2015-06-20 16:45:48.0     
7053	18503047909	09ff546c21953d1979eb40d5d556f35c	王文晖	421127199207102238	o1r6cuHEfDe28AVBaTcOsv-VlpfQ   2015-06-21 11:49:20.0     
7059	13974770615	0ee460e331992a0bbbb7d5f9095edcc8	蒋勇	43040319831026101X	o1r6cuPeaLKETN4Xl_M8sJ-49bfs   2015-06-26 05:22:37.0     
7060	13418896172	3dfb10e112efa71ad58a98e6daba1662	李红	430902198211141021	o1r6cuPf1QGLWxyPb7dGdeMwc5S4   2015-06-26 07:12:43.0     
7061	18665651331	634d733c79d45dc9a031c0e365ae7322	宋湘石	430381198005047459	o1r6cuNKfJ80H0ShIFotM9WWfAuQ   2015-06-27 18:42:41.0     
7062	15902367125	f25fdd8cd81923c5396f420327fd7f21	刘会	510304198206020583	o1r6cuEJ-HjcbOOFE8CeuBQD6eWA   2015-06-27 19:20:44.0     
7063	18017660777	f68559d96732222621010253d9cf3195	梁海清	342201197105031831	o1r6cuGtrlXA1-E89O3f0U9Pb3xc   2015-06-28 20:50:26.0     
7070	15703429204	7f3cd5ebee0f8ed2140b470e61d597f5	许智权	140224199503200076	o1r6cuMLO1l6TZDe68aF824lz__I   2015-07-05 16:43:51.0     
7071	13539767401	8953a70250729c99065a450de858649b	林伟杰	445122198810205611	o1r6cuD07NCuZJR9WkisvE7a5lf0   2015-07-06 09:02:42.0     
7072	18741606638	128f2e3b3c52f7399a3d233aaf8490da	高婷婷	210703198807042424	o1r6cuCQ9FAAbELfhUMCWDgPgrg0   2015-07-06 12:50:05.0     
7075	13380817890	f92fa27ec65f2a6fe81b3e52e9ae87cf	蔡妙声	440982199406180010	o1r6cuBOPoUWAb7Z2jwUJesX1N0g   2015-07-06 20:38:15.0     
7077	15399469639	c097dd6de04c016a247b324a2c1c1a49	马新明	610425198702032437	o1r6cuFm185KkZf4YfYeiVycydBc   2015-07-07 11:21:55.0     
8052	13873301262	9c57e46af4147390809c15f0145ca85f	罗坤	430204198404011017	o1r6cuOTgwVkHeOGEApWa-_G5SJ4   2015-07-10 03:31:18.0     
8055	13902321000	b28e2438c457119604175d76a84a3cdd	马智强	440122197507073936	o1r6cuIDOoh_a5ErTXTmUmXawBwc   2015-07-11 00:43:55.0     
8056	13096166333	23d25c7fefd07b89ad6709646f173366	阳毅	513901198704215515	o1r6cuBOGfi-0pQ6iOwlMOeaBkMo   2015-07-12 07:13:43.0     
8057	18723381998	37ed4d963c8cba2a5c8f3a068991582f	李华	510214198109171512	o1r6cuG9t3kQsuT5ocDTZ2nwXh5I   2015-07-12 07:46:22.0     
8061	13203320068	4b761f51a733751c1ac091856a2059eb	陈方武	42108319870725161X	o1r6cuJ4PkwvsErMDJsIMwDlOeYo   2015-07-15 07:20:52.0     
8062	13692199520	d2503822f327b93f52b95e717f4ca491	范远理	441523199205205516	o1r6cuBujdif7k6kfm6SSnRn6h-A   2015-07-16 13:16:26.0     
8063	13666557172	6ca60dce3f15a8ef93e22022fe3d8347	胡萍	332526199311047122	o1r6cuCj8Y7nBzyKJyW7ovABpAXY   2015-07-17 01:59:43.0     
8065	18588582883	bb9e85e809b5c90a028583a952635bee	陈叶勤	440126197604140016	o1r6cuKSJHMWAnp0xTMbVOyxO62c   2015-07-18 15:03:34.0     
8066	13774816818	030d8386d780e7774baccc2e89a4ddb3	李重钊	350581198504240510	o1r6cuEy9LQBRaPObHcwLirQthkY   2015-07-18 21:23:25.0     
8070	18782918003	37dc7256544346be105f8946cd3b8247	鄢军	511023198607028678	o1r6cuDFOumc75fsHMZq24QMrw5g   2015-07-22 13:09:54.0     
8077	18676405505	615f24a868954c2dfa07cf140b18b193	林天虎	440923198907230755	o1r6cuPdvpzZQ6ugHp2cX22yQ3jM   2015-07-23 17:33:10.0     
8078	15370158218	30ffad98881a6c5f87be7ac55539565e	陈青	320520197007280332	o1r6cuHWssL8S8lt_eNPGzt-PlL0   2015-07-24 06:41:35.0     
8079	13926540006	a862090f1fbcde657357fe6a8471421c	杨银浩	441602199502110410	o1r6cuHrATJR3O1MR1dgH-9TjTWQ   2015-07-24 07:12:41.0     
8081	18608076890	7e220d1f1fdce2e4316c945562404cca	刘意	511124198606210031	o1r6cuF8Bfj_Okybu5mnZHefRcNA   2015-07-25 18:52:14.0     
8084	13585977785	ca2c953bf7bb40c9ef155245f1003f52	蔡凯恒	32132119880119001X	o1r6cuPDIZutmAx79Jf13DJuaCEA   2015-07-28 16:11:38.0     
8091	13129555139	c5bd781b4d8ec72a12e359769f26aeb6	黄玉婷	44188119910124852X	o1r6cuHmpYzVSuT1l1IpUo429QNI   2015-08-01 12:13:28.0     
8095	13861880174	36c256422ddb6d22a09ae677fab211a9	黄河	321182198702263510	o1r6cuNmNT8mNkkfBFaIIxDeanTg   2015-08-03 22:01:52.0     
8098	15906176752	36c256422ddb6d22a09ae677fab211a9	黄河	321182198702263510	o1r6cuCUBkGO2k_JcgsnAFJH4udY   2015-08-04 06:46:19.0     
9052	13510441643	f6e324680479b7a3e749bede8a1fd46a	吴克浩	441522198608133050	o1r6cuCrR-2X1FqxJdDN3jfmhsWQ   2015-08-08 06:37:58.0     
4052	13370592791	7654e01719d0654915da0aa530fa87c0	王成虎	370923198912051294	o1r6cuO7NJcdskBHesgX_hmTqWOQ   2015-03-23 21:58:49.0     
4058	18182251881	19775ae32d707045b519e30377a4b3e0	余涛	50023019940930157X	o1r6cuBHXjA3wQWUolI9b6jR-Gp8   2015-03-31 11:07:57.0     
4060	18964374992	8f3e99948ebb6947852f6070c68b90c9	颜达	330106199003161530	o1r6cuIPSe5ikwGUrCAinaW6GZqs   2015-03-31 20:08:44.0     
2050	18024887307	e5cf362e3b023b7141c9dd8575b14272	廖诗	441625198907033628	o1r6cuIKTGE7kmQq3RPT3dRtf65I   2015-03-15 05:13:34.0     
4051	13122195220	0018370def1babc56a041019e784e65f	韦泽追	45022119921016241x	o1r6cuLNNMfwLkQHXP7nuqIk0pOI   2015-03-22 11:11:42.0     
4061	18825282852	f2f7aa39902e704cd91740545123c806	陈海波	500233198410216895	o1r6cuF3MDENi5cg7Vi3W9xXW2FA   2015-04-04 08:50:06.0     
4063	15917719920	b1eca48fbfb9fc7d445683c8f203e1dc	李春艳	342123197903054969	o1r6cuJOifq-e12AXp9espBJnlnw   2015-04-06 04:41:16.0     
4064	18576011860	3aad90ce75e9fd47822cc9d7094b7143	李辉森	450821198611220818	o1r6cuGT2tCIU1lCjr5bpyAIesqk   2015-04-06 20:34:15.0     
4065	18820077694	e26ef7e31c54eebbfa26c387c22a6814	黄耀晖	440104198110275013	o1r6cuLcgu9l2LrwZdp54LSSoto0   2015-04-08 15:40:55.0     
4066	13686456960	e6d27610d97ccbabebb56f2c1ff636f6	张勇	420626198410192019	o1r6cuPaQln-0fKc8zpsFIIlaizg   2015-04-08 16:18:09.0     
4067	18588863520	36efdeddeb914815ccc8c219b2b0b435	姚智源	44150219790914161X	o1r6cuD4Yb0o4-Sa-Eob3sW2fc_g   2015-04-10 09:08:14.0     
4069	13316126702	ee62c034a12dc211388a42db7b24198b	叶伟能	441421198603275314	o1r6cuH9jYkU2dGs8kY5EqrNUndA   2015-04-10 15:59:20.0     
4070	18105305866	ad9812bfd678e6ae29faeb763b3bf5ed	曹俊杰	360203198506182517	o1r6cuCnSGGVKumsZ_DNZqn1R-_c   2015-04-14 11:54:50.0     
4072	13530272171	705feecc1314d2de01b5fbf4f5496c1f	华伟	36050219870826465X	o1r6cuOPiJ1SgrMdlAUSEiTe_jDE   2015-04-16 11:57:11.0     
4079	18721319795	2bed64834d3bd81ed7da2f882d64edbb	段俊	421121198811124414	null   2015-04-24 12:38:56.0     
4080	18580692652	106667fd981cc180c972e6bf6b773003	伍燕平	511602198901228452	o1r6cuHUYefdnk-pCsinyEl0O0To   2015-04-24 16:57:59.0     
4082	13530848932	12dd92624d410e1ea31128bb25f38258	韩超	610425198801092419	o1r6cuF7sUB1NuGGqSiNg5Y-Kpu8   2015-04-25 14:49:07.0     
4084	15923955376	783beb8a02c0fd265ead9707872ff3a1	何伟	500221198911270616	o1r6cuOBzJwNpXe1Lqqung4xHDS8   2015-05-11 01:52:10.0     
4089	15950037952	461b4b01a55a9131219f5a1baa7f4a3f	朱少昌	320525198204174113	o1r6cuCcfBlsDEN0EqMH9TAZBxco   2015-05-12 18:44:57.0     
4091	18680254479	b02ed05030b4d13693a8ab5401a78d21	陈建林	44020419830203501X	o1r6cuMsaxO-O7mR_g-SOtHdLJiQ   2015-05-14 20:19:07.0     
5051	13570843038	d6229d86423deba8cde6c9bf1169ee77	龙廖慧	430223198810115937	o1r6cuHO7n0zun9ZWuuySfu7rggE   2015-05-20 18:00:28.0     
6055	15916315090	4b8c84b65465029ab9f0366fabd33fd8	吕康	510722199111267857	o1r6cuDGcKLXnbQcE9hA9NJVCxFw   2015-06-04 08:11:12.0     
6060	13630002426	51dfdcac9e2deda5859518c49287c797	胡昌湖	330329198701281936	o1r6cuBBlnXlqFy1LlweeDu4Ayys   2015-06-12 16:43:31.0     
6061	18643168816	25d55ad283aa400af464c76d713c07ad	孔德峰	220103197903082519	o1r6cuGXWkdSFhrdjO0yz6IubD-0   2015-06-14 00:36:20.0     
7054	15023160650	0ac56f4e7203cbb2a9b15697d5804df6	刘峰	510228197106250016	o1r6cuLdRafev_xIpmSwTH098ewI   2015-06-22 01:07:59.0     
7057	13376222444	ca0986d6339fb4dea5d08737fd930906	周亦清	320219196810061773	o1r6cuJjGk__c8heLsn3Pc5HUhQQ   2015-06-23 19:02:19.0     
7073	15376449876	195d91be1e3ba6f1c857d46f24c5a454	张宇	371312198910025331	o1r6cuNBN4gC0arizEa6t2IINJUg   2015-07-06 15:34:01.0     
8064	13172592893	654b981d2c2dc6ee3336bbdc6829700f	王进阳	513030198706292218	o1r6cuANfeUzKOACoUPsTQ0RsifE   2015-07-18 12:04:14.0     
8082	13921357271	d758d5e1970d6e20e12ad90bbbda936b	许芳	320219197912074545	o1r6cuBS_ZRIbBQIDfTvQzL27g-8   2015-07-26 14:58:55.0     
8099	13534087404	745dc52bb61b9149ffc3c23be2662ef8	袁超	330523198910306434	o1r6cuN5STXPXqr2KmdyULwLe6XI   2015-08-04 13:53:49.0     
9050	13480111850	978f2acb18be0304cf4dfb0991e3eed8	刘俊	420621199510072711	o1r6cuNB9ugbcKbg55f2BfWYbyuA   2015-08-05 14:09:35.0     
3050	13424331887	b3d5d19853c4ad391283d16f56312d23	向玉雯	433023197610180029	o1r6cuKE8mwIUu3T8tT06kzNS6dg   2015-03-17 07:26:46.0     
1083	15818695537	f9e967027b0a405e11b9aca8987542ac	蓝升尧	44148119940902415X	o1r6cuJrwaardqYXW11sx-0zqi-k   2015-03-13 15:56:58.0     
4050	13570963854	e3e3f00049cc753967ab877ba016cd20	林元越	445224198507160359	o1r6cuHsiaVoJQIkUxPwIGvbdADQ   2015-03-19 18:51:45.0     
4056	13500052025	948b681abb9c97dcbfd5478233fa001a	杨成光	441502198901154015	o1r6cuGGQjL1gvlY7mYexJ13XuiE   2015-03-29 14:56:46.0     
4059	13632629177	bc0210aa165ba810794b64eaaf11bdef	陈文彬	430922199004250516	o1r6cuLjQ4-6C27knBx6iR7p4j8Y   2015-03-31 15:59:50.0     
4062	15800554574	b021bb083a1fa69b21e1a4e7382b2004	周礼照	522628198004085216	o1r6cuCky9iUlPtOgCSbeaLCcqi8   2015-04-04 17:49:33.0     
4068	18025378162	80524b8e72b33fcc19edf4229c11db14	赵宗生	460007198805117238	o1r6cuKMstIvP6cRiGKoyWFpnTq4   2015-04-10 11:34:01.0     
4083	18681690377	4f8e281a9b94c26efc2f0ee774a3d042	雷建	511381198106069332	o1r6cuHrN9QB-AJPX82WQBXTGQjc   2015-05-09 08:20:31.0     
4088	15121074778	1dbc598126ac98220f9779ff94435af3	杨华军	51090219870923185X	o1r6cuCj13izmelFwmhZoLOiVTGQ   2015-05-12 16:47:48.0     
4092	13662257894	d396d93b1e53a1f20c95728f3f8a2865	张飞跃	142625198208284313	o1r6cuOogFFyNdoMFaBb_ERPzA6g   2015-05-17 17:37:25.0     
6050	18818994633	79904b2b13656401b71db3d75d9a1d8b	陈天豪	441424199011081376	o1r6cuDy11RxUKSrX_OhPnzaIbOM   2015-06-02 01:15:29.0     
6051	15950920217	9ad3aae298063015f73a09dcb6f3f638	徐明燕	512535197511080411	o1r6cuPz0ntnUZlsSNrGh1y2odrA   2015-06-02 01:56:22.0     
6052	14708611292	d0970714757783e6cf17b26fb8e2298f	谢建翀	522122198204301811	o1r6cuHv3EKJfNC2p9XNQQzku6E8   2015-06-02 07:44:37.0     
6053	18140001627	5d93ceb70e2bf5daa84ec3d0cd2c731a	陈茂芳	511602199210011523	o1r6cuKdRewuNVQt9vDTbfVQyCQc   2015-06-02 10:02:24.0     
6054	13452188587	86fd58f0559d8db81aecda26e470830b	唐曦	510202197905270634	o1r6cuNl7jWZxBy-ugNNJbmjRgaY   2015-06-02 15:02:45.0     
6059	13917082032	54aca876069766669e0eb6878803c867	夏波	310102198407123633	o1r6cuGgaItnPMrJOqHV4hOlDSo8   2015-06-12 15:49:44.0     
6062	15989390629	1838577aee017f83239229270bfd2841	吴静	362427198803130020	o1r6cuF_xxgJDEJgITKcAaRLsTDc   2015-06-16 11:20:34.0     
6064	18022004515	679657a9e5b05a213e1013c934b2d864	卢健晖	442000198911085616	o1r6cuFwpskQ5YCf15bwSJjg5FRE   2015-06-16 19:35:39.0     
7066	13645756411	d4e4df9c9e9956fa8f5f5edc2961e924	莫中梅	500383198502231768	o1r6cuAFZKa4N9yzjxcVPIq86wv8   2015-07-02 14:07:47.0     
7068	18953735353	16924f9490efa3feefc789deac301434	朱峰	37081119810923201X	o1r6cuGjbK7HVvHrdFloMobe224E   2015-07-04 08:41:26.0     
7074	15177210106	607f5928eb29bb250545a042729b5192	罗嘉乐	452231199101060013	o1r6cuO9quBZ6j0oy617GyzdUu3A   2015-07-06 20:00:46.0     
7076	13778228981	9cc6ac088eccbbd5f0981d745d970192	夏林	510683198611110314	o1r6cuNuXdqhOlI6uv-l4pwW5Sno   2015-07-07 00:47:17.0     
8054	15671000527	c8d791dd98063f897939a4bc94acb1b9	杜军	42050219830802651X	o1r6cuHYU93xGwUdtbvaCxR4Sjhs   2015-07-10 19:13:36.0     
8072	18550464112	5831f639b634ad52716c9b3a9d35a032	邵进龙	622727199307184112	o1r6cuN7xdvyYd5S6pPqk8C4oTak   2015-07-22 18:46:29.0     
8073	15999618773	7fb4c6e3712e1d2399400dfb26949a39	梁剑	45252819820115351X	o1r6cuD4TmzKZbwE_099fj_6Fw8c   2015-07-22 22:06:57.0     
8074	18125168085	fe685cb7c788f347559bf327c49f84fe	陈周盛	440507198907040634	o1r6cuDDhDE3hZhBu-NcwBgCxmhw   2015-07-23 06:58:09.0     
8076	13636337747	62c8ad0a15d9d1ca38d5dee762a16e01	华国卿	340702197910240531	o1r6cuKw3j02xis0ioz-ZgMoF_Ss   2015-07-23 16:54:53.0     
8086	15681250177	75ae0370412e1492b356dc483d4d3cea	杨旋	513722198212310023	o1r6cuBmDe8cPh-QPGk9nhvRJtuI   2015-07-29 14:25:45.0     
8087	15243502095	30892c5f869dd7ba46b3f7db31a35fc0	张武	430223198801011511	o1r6cuKXgQCRpZ8AZkjzcoTXSjTI   2015-07-29 19:47:36.0     
8088	15878783589	5a12d7a44febc04a3840f4cda6c3616e	谢吉林	452122198612045433	o1r6cuN_9aMGAiZRE9l4iPjh8r1Q   2015-07-30 00:20:28.0     
8092	15986600983	3252de4506d42db54b22034b9e1b3b2c	李保庆	410823198603221816	o1r6cuOFLnYLzGuN3mYCW4JMjvYY   2015-08-03 08:30:54.0     
1061	13692782476	3888163ff7730ba028c96d4a77be59fd	陆水永	441226198106123433	o1r6cuLezlQPmS4l0SyTxo7sj0CY   2015-01-28 11:29:56.0     
1057	13509284111	2928358910b9640821b5c426adeb910e	康玉君	44018319810115002X	o1r6cuJ6QQX33LH1Vxf7vLcUhNDE   2015-01-23 16:42:38.0     
1060	15014100036	96789896ccd5b4f83679bb68b92468ca	蔡晓萍	445281198910302748	o1r6cuAECHpc3NQ1zo8uA7DHHcLo   2015-01-27 11:33:21.0     
1068	13611863828	8494f3b5e8f72883423e496d00f33ff2	徐琳	310113198207091437	o1r6cuNzj6zIJWwSUs6nRtpX-Meo   2015-02-13 21:21:34.0     
1069	18914011979	defc47a88b222a8ebbe9b84b7aac3fc1	徐之明	320520196912161937	o1r6cuMtLKWO_0gu-V3BLGeP5IP8   2015-02-17 14:33:57.0     
1070	13553006868	36835e144d1485488c41a4e119ac55b2	詹国栋	370205197403174012	o1r6cuEXHsFBVbkjrJ06DVIUHO-I   2015-02-24 14:41:41.0     
1071	15001745226	08e34492a48e8de5aed8ce874fb425c5	林喆	230103198709204814	o1r6cuFhBC_6hqTu2dc4kDfyJG4Q   2015-02-25 00:57:03.0     
1072	13662550271	21218cca77804d2ba1922c33e0151105	刘青红	421023198103257512	o1r6cuA8sjTxLOc4UbTbBTpzp31U   2015-02-25 12:47:02.0     
1073	13714138444	2879864033a3fae4f2cd62b555b3aa40	陈宇东	440301199009220612	o1r6cuLR6V2d0DXneLkR42pK8PQQ   2015-02-25 20:56:23.0     
1074	15218167850	0a43557a9b093cbb0fccb4f6eeb7d01c	李小玲	441702198912271023	o1r6cuOG5peZvT_CBIeWJ_G9DvUU   2015-03-04 01:25:50.0     
1076	13816559434	310960a15f76772e15f80c7e2bf36765	张扬	310105198112062019	o1r6cuFiBqohB8hpvcTJO585tulg   2015-03-08 13:31:36.0     
1077	13138160000	aa97eba124ab0c029fb7d5c37a6141b0	江展华	441222197303030076	o1r6cuC0VjKlbnVrVj_SqVzd7vTE   2015-03-09 21:51:03.0     
1078	18138869228	aa97eba124ab0c029fb7d5c37a6141b0	江展华	441222197303030076	o1r6cuC0VjKlbnVrVj_SqVzd7vTE   2015-03-09 21:55:32.0     
1080	15820260184	92ec9234178f263736b44196534ffb39	黄志军	440106196903101850	o1r6cuBk53zBnYjqTqOhOu4U_10E   2015-03-12 12:57:19.0     
5052	17875742212	6882399ec6487a5f6390170b2875decf	林南杰	445222199309273354	o1r6cuLXzpA5f0yNdLy7jmWLdGK8   2015-05-20 22:37:31.0     
6056	18312583276	e10adc3949ba59abbe56e057f20f883e	覃东波	430524199003107436	o1r6cuMUvMu0Xjl4eMllrfYyeiCQ   2015-06-10 09:23:29.0     
7056	18665460733	82645a2e53b66cc44692015a7667730c	李志龙	450422198703110215	o1r6cuHtwgQyMdDEiLoKuQaznLF4   2015-06-23 15:55:40.0     
7065	13482487926	0659c7992e268962384eb17fafe88364	唐丽莉	310110199008170568	o1r6cuNT-Z9lN0lt_o34lw6DCJec   2015-06-30 23:27:54.0     
8053	13387554452	00203d69e735b50bae1bb0b9a4da6593	余康	420106198007272016	o1r6cuLK5Iq4AZZUEc51r2hhCkeo   2015-07-10 07:06:32.0     
8058	18037963827	7983d58ab440d71c88104b1d1cd6bb79	陈泽林	41032719920324603x	o1r6cuLqX-Vq-paQDfwIq5jTV_B8   2015-07-12 18:46:21.0     
8059	13166057823	9cbf8a4dcb8e30682b927f352d6559a0	陈勇	42010319881019373X	o1r6cuIQKTE5wVUsJifQeyRCSA6I   2015-07-12 20:07:30.0     
8060	15900727720	21624d12ea1c2fa355923dd559c04cb6	汪乐	342529198308090011	o1r6cuFY8qeF8Z49YGp5Rf61ql0I   2015-07-14 12:25:58.0     
8069	15994373148	bcde2b2b0d2bcb551656d370048353df	钟晋	360311198208034036	o1r6cuDE3j3qDaPUjsoajssbZ4rU   2015-07-21 16:22:58.0     
8080	18808350016	533ad6af4e9d17884a748283ea2c8b79	杨雯溢	513101198905070021	o1r6cuC3AsUX5LFNRdIpgBerP_K8   2015-07-24 08:40:06.0     
8089	13430324350	6c5d4f54013c9e6efe873294b822a93d	汤方成	440111198811301871	o1r6cuBplmvXMYyhLwYF1CtNUvGY   2015-07-30 13:30:21.0     
8090	13529483300	ff9a282ae65a94e88badda6b871ea367	刘兵	532527198806250017	null   2015-07-30 21:22:39.0     
8096	18973947366	e14aea7e540fbfb00f2bb35398b80696	周强平	430521198909220271	o1r6cuK3R4FCZf812uU8T1idFc9A   2015-08-03 23:43:26.0     
8097	13823205199	3e6fae072cc6933d6b5b51db9133e668	郭钜展	441422198206140017	o1r6cuJyN2xRm9nxEH1oumkREglo   2015-08-04 06:14:51.0     
9051	13558782132	4a2abfe13b1a4dca0a4d528f509338b9	陈龙	51012419890512292x	o1r6cuLJuLmwVGSeF4vBaMyVhGgo   2015-08-07 14:46:37.0     
9053	13918153103	5c040a985553d4bf35d76a4d5b38f7ff	华爱军	320621198212038517	null   2015-08-10 15:46:56.0     
1064	18101886211	fe008700f25cb28940ca8ed91b23b354	桂菲	310110198510225160	o1r6cuBLWthkESYwaoLmjI8amo2s   2015-02-03 12:38:03.0     
1056	15112664816	2bded1b3b476df1c4fc2e655cb5c35a0	赖景汉	44142219900407161x	o1r6cuG7QZMrJ5fRY65FRghDQuHw   2015-01-19 13:18:17.0     
1058	13510635967	9e172168c90037d4c4667bcfd902db83	曾志伟	350583199004208917	o1r6cuK4FTcglJGZ4eZgkITr2CNM   2015-01-26 01:00:02.0     
1075	15025641536	1a56895522db7d65a83957debe3313ce	田蜜	50024219911124394x	o1r6cuD2Dxf9fUb_N-oARLYLJqDQ   2015-03-06 19:30:04.0     
1081	13178087555	72532b174b12e3b4e7b85abc4a8429fe	李永翠	532125199002220541	o1r6cuO5L8T_Tj75COONWleRJubs   2015-03-12 16:13:13.0     
1082	15026572400	9628028b82c0df37c1f902281823654d	张伟	310228198610042619	o1r6cuFgT_KD6dVn1cmAZVN5GCqg   2015-03-13 00:33:34.0     
4054	18621609895	4187bdac9fb610d9a6241987f03b1be8	徐伟	310225198203173815	o1r6cuE-oga7S7bwitupfik7FkgE   2015-03-26 09:29:42.0     
4074	13672548035	5929e9c804d4b1543f2ee60fbdc53b9f	林宇	445302199503110911	o1r6cuG8VMZWY2O_-uh9ox9xwkwI   2015-04-18 04:21:53.0     
4077	15918744262	bc8fd307a43745b9591f3ac52c0259e8	卢伟良	441900198609214315	o1r6cuLdKkrM_WvW8CuH23bPtN_Y   2015-04-21 03:14:44.0     
4078	18623120627	83504b97abfc381dab687873a7cffd84	胡洪波	51023019810627775X	o1r6cuEjtcSxJUi1dCibAjiDpHwk   2015-04-21 08:15:29.0     
4085	18520100211	da83640edbae5a9150f1ce4cd95fe90d	刘棉坤	440183199209271733	o1r6cuKRPY7sIakkRjj_6uztPc8M   2015-05-11 10:59:40.0     
4086	13955377777	175404d072d04d9996f50ac5e463513e	张克义	340222196410100595	o1r6cuAhFiTZj0OH0kzBbBBH0-4I   2015-05-11 14:58:33.0     
4087	18875188445	422e2e37238081008c40d5124ac26ddd	唐晓燕	500382198505065244	o1r6cuKw7c4ul8d4QsPqJ-375_vU   2015-05-11 17:04:30.0     
4090	13816512644	1fc2e69f39c2c2f0ac3e86cbdb871598	李佳妮	310104198710210847	o1r6cuCh04s2Nmbi4lX2AiGWM73Y   2015-05-13 10:03:54.0     
5053	15013512713	2a351a7b2214755bdef6488b07e95676	傅炯楠	445102198809020913	o1r6cuDl5ZtFKurmKEs0IFBGlCRc   2015-05-21 21:15:22.0     
6057	13450156763	29f59a67600fc200d0408c607c614174	冼炫和	441283199112115714	o1r6cuOvFBMz7a4yj8GswAH36ZxI   2015-06-12 00:22:31.0     
6058	13710434326	e61635e48329460faa72c058dbd239c2	王建威	441502199112151131	o1r6cuLR34sIPKdTwMHevHSFMKtc   2015-06-12 05:03:57.0     
7055	13505531014	9aafc5e20e7c8ca16489d6ebc10c90d2	尹玉龙	340207199008101610	o1r6cuAjZ6N75fkoZBa3i9b5SJDw   2015-06-23 13:10:23.0     
7058	13550353565	34ac8b62547fbd2ffcbd0b770023364c	涂广焱	511123198412304412	o1r6cuJEYQNrqyfOJHHqOXHv0Gfw   2015-06-25 15:47:44.0     
7064	13774350946	8f081baf5d508543c4bd759b8d2a7588	邹小娟	320981198407107466	o1r6cuF-2p7xK8lEqNj44cMkdJog   2015-06-29 11:25:56.0     
7067	13607274400	dbe92f4bb8b238d67cf482312d13dba8	汪虎	420682198710250090	o1r6cuBVE7_vbq3Fq0mwLLlQ7Iso   2015-07-03 22:55:12.0     
7069	18602761057	6637317fea74c686fe2571e42202ba4c	王志国	420106198703210417	o1r6cuBrDP3MeTZbrO1PigL9tu7k   2015-07-05 10:01:24.0     
7078	15228759551	93279744ff704dcb087cb18e93db9c66	邹大坤	51072219930320843X	o1r6cuJndnP6XNAmezLOzJVU3zXg   2015-07-07 17:07:16.0     
8050	18041114899	e99a18c428cb38d5f260853678922e03	王艳	210222198212251771	o1r6cuJ1fJyGNPg4GahT40_k0wq4   2015-07-08 23:57:42.0     
8051	18112551234	34f85ca80ec353d3052b8a2d3973a0c5	张爽	220182199204032517	o1r6cuCETdMlDHHfzX_Hz_9etSmk   2015-07-09 00:39:16.0     
8067	18391681231	8aa7340ae2e85ae8e04fd908aa58b54d	赵鹏	612326199102190017	o1r6cuCVdY24uae0AFQiccvK3pGQ   2015-07-19 08:52:13.0     
8068	13018033370	ea8897419a5172bd6dacfe5932fc55e6	郑梦佳	429006199308088228	o1r6cuMy8kGYCERjjyCJgsVg27bE   2015-07-21 15:13:30.0     
8071	15026676793	e17317c78624d2d17e6394d106aafb15	张婧	310102199002194446	o1r6cuFnqZvEblKfvZWRLPymXGQc   2015-07-22 14:55:01.0     
8075	13588420596	b263b929c30eb2b6f3baf1bda9212ad7	卢青青	331023198909201444	o1r6cuBQKr6SxJJVRsxZD6wwGvIs   2015-07-23 12:41:56.0     
8083	15800810091	5c5821981e6cfe7d71d36e46dd18bb30	裴佳樑	310109198305044517	o1r6cuBBXM5H0S7uiLbHfnVv9dYw   2015-07-28 10:24:55.0     
8085	13797016743	f4c77c86d08a2963af4573e2e5e7cee8	李师杰	420113198609090838	o1r6cuKfS9GMouNOpCNJIkBbYZFQ   2015-07-29 00:18:28.0     
8093	13790778897	4be954c1ecd272423f8cede4313e7655	林海东	441322198512230816	o1r6cuHf3WBIvelLXcNZ_s5CZWxw   2015-08-03 18:17:09.0


修复方案:

快过年了,希望能好好修补漏洞。
如果危害够大的话能不能求个大礼?

版权声明:转载请注明来源 擼管俠@乌云

漏洞回应

厂商回应:

危害等级:中

漏洞Rank:5

确认时间:2016-01-20 10:13

厂商回复:

谢谢,此为测试系统,已通知相关部门处理!

最新状态:

暂无

漏洞评价:

评价

  1. 2016-01-18 20:36 | 猪猪侠 认证白帽子 ( 核心白帽子 | Rank:3846 漏洞数:296 | 你都有那么多超级棒棒糖了,还要自由干吗?)

    眼花,看成了陆金所