当前位置:网站首页>记一次,修改密码逻辑漏洞实战
记一次,修改密码逻辑漏洞实战
2022-07-06 09:22:00 【又懒有菜】
目录
0x0a 状态码信息:
HTTP 状态码由三个十进制数字组成
响应分为五类:信息响应 (100–199),成功响应 (200–299),重定向 (300–399),
客户端错误 (400–499)和服务器错误 (500–599)。
0x0b 漏洞本质:
缺少后端验证或缺少服务器认证,并且前端缺少逻辑。
0x0c 信息搜集: js白盒
vue框架,杂项webpack,推断使用js前端验证。
f12 查看 ctrl+f 搜索逻辑漏洞关键字 “验证成功”
结合前面,大概率可能存在前端单一认证
思路:抓包,修改response状态码为:200
0x0d 话不多少开干开干
0x01验证码绕过
注意此时并未获取验证码
0x02 截取返回包,修改状态码
do intercept ——> Response to this request
修改状态码为200
验证码绕过成功
0x03 修改重置密码
0x00 这里直接修改发现 提示流程错误
f12查看源码
发现这里还有js认证 ,因为上一步可能缺少js参数
到这步了 尝试一下这里能否绕过
0x04 修改状态码
成功绕过
0x05 使用新密码登录 成功登录
漏洞已被修复,切勿骚操作。
边栏推荐
- MySQL锁总结(全面简洁 + 图文详解)
- PriorityQueue (large root heap / small root heap /topk problem)
- MySQL事务及实现原理全面总结,再也不用担心面试
- [three paradigms of database] you can understand it at a glance
- Experiment 9 input and output stream (excerpt)
- Poker game program - man machine confrontation
- HackMyvm靶机系列(7)-Tron
- [the Nine Yang Manual] 2020 Fudan University Applied Statistics real problem + analysis
- 实验九 输入输出流(节选)
- Analysis of penetration test learning and actual combat stage
猜你喜欢
MySQL事务及实现原理全面总结,再也不用担心面试
仿牛客技术博客项目常见问题及解答(三)
深度强化文献阅读系列(一):Courier routing and assignment for food delivery service using reinforcement learning
Leetcode. 3. Longest substring without repeated characters - more than 100% solution
SRC mining ideas and methods
Read only error handling
Mixlab unbounded community white paper officially released
Record a penetration of the cat shed from outside to inside. Library operation extraction flag
[hand tearing code] single case mode and producer / consumer mode
(原创)制作一个采用 LCD1602 显示的电子钟,在 LCD 上显示当前的时间。显示格式为“时时:分分:秒秒”。设有 4 个功能键k1~k4,功能如下:(1)k1——进入时间修改。
随机推荐
Relationship between hashcode() and equals()
强化学习基础记录
7-6 local minimum of matrix (PTA program design)
PriorityQueue (large root heap / small root heap /topk problem)
甲、乙机之间采用方式 1 双向串行通信,具体要求如下: (1)甲机的 k1 按键可通过串行口控制乙机的 LEDI 点亮、LED2 灭,甲机的 k2 按键控制 乙机的 LED1
2022 Teddy cup data mining challenge question C idea and post game summary
扑克牌游戏程序——人机对抗
7-3 construction hash table (PTA program design)
Difference and understanding between detected and non detected anomalies
强化学习基础记录
Record a penetration of the cat shed from outside to inside. Library operation extraction flag
Custom RPC project - frequently asked questions and explanations (Registration Center)
Leetcode. 3. Longest substring without repeated characters - more than 100% solution
Miscellaneous talk on May 14
[the Nine Yang Manual] 2022 Fudan University Applied Statistics real problem + analysis
Why use redis
Intensive literature reading series (I): Courier routing and assignment for food delivery service using reinforcement learning
Package bedding of components
Have you encountered ABA problems? Let's talk about the following in detail, how to avoid ABA problems
js判断对象是否是数组的几种方式