Editor's note: The education system college entrance examination..., filling out applications online is convenient for the majority of candidates, but safety negligence and loopholes can also increase a lot of unnecessary trouble. Here we remind educators that safety is the first priority.
This year, a province implemented online application for college entrance examination applications. During the simulation application drill, it was said that all applications were filled in on the Internet, but because the number of visits suddenly increased during the drill, the Internet speed was slow, and even the normal access was denied service. I sweat wildly! Later, when considering this issue, the above mentioned only implemented online application applications in two cities, and the others were filled in by the local area network and agreed to submit them. During the drill, I was not at ease with the security of this system, but I couldn't find any loopholes at that time. Later I heard that the city I was in was one of the two cities that filled out the Internet. Recently, I really discovered a loophole during the filling process and sweated wildly again!
Let’s talk about the security measures of this system first. After my inspection during the drill, the system and scripts of this site are doing very well. Now, if you want to find vulnerabilities, you can only start from other aspects. Before officially filling out the application form, this system requires you to fill in the admission ticket number, registration number, ID number, password and verification code to log in (as shown in Figure 1). After logging in, you must change your password before you can start filling in. After changing your password, you only need to enter the admission ticket number and password, and the verification code can log in. As shown in Figure 2, the page after logging in after changing the password. At first glance, it seems that it is safe to fill in so many information, but it is not.
Let’s take a look at what he asked to enter. In fact, the most important thing is the password (nonsense). Let’s not talk about the situation where the password changed after you are idiotic, let’s first take a look at how his original password was obtained. The original password is composed of the card number and password of a volunteer application card issued by the examination institute for free. There are more than a dozen digits in total, so it is unlikely to explode. But I noticed that the teacher sent this card randomly, and it did not correspond one by one. So can you log in to multiple accounts with the same password? hehe,We'll know if we try it。 I logged in shortly after I got the card and changed my password. It happened that one of my classmates' cards was lost. I was about to go to the city admissions office to solve the problem, so I asked him to try to log in with my card, but... it turned out to be successful, sweat~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~. This way,We'll have a chance? ?
Maybe some people will say how we know other people’s admission ticket numbers, registration numbers and ID numbers. It is actually very simple. Our registration numbers are arranged in order of class and student number. So as long as we know other people’s classes and student number and then according to our own registration number, we can launch other people’s registration number. The admission ticket numbers are arranged in order of registration number, so we can infer other people’s admission ticket numbers based on the registration number. As for the ID card, it is composed of 6 fixed numbers + date of birth + 4 digits (the last digit may also be X). We know the first 6 digits, and the date of birth, we can ask the other party to write a classmate record, and we can batch test the last 4 digits through software (I have tried the password error N times and you can log in). The most troublesome thing is the verification code. At present, I can only use my hands to lose this, but I heard that there are techniques that can identify verification codes. If it is true, it will be much simpler.
Think about it, how big a big deal is to fill out the college entrance examination application. If someone really destroys it, then it will be... Of course, if someone changes other people's password from the beginning, they can help you change your password by just bringing relevant materials to the municipal admissions office. At worst, it's a little bit harder. Then, after filling in the application, change other people's password and then change his application? He would definitely be surprised to ask for a confirmation of printing, but it is not that simple to change his choice at this time, because the modification of the choice after printing is prohibited according to regulations. So how can I change my password after someone has filled in his application? You must know that the password was changed by himself at that time!
Haha, haven’t we said before that if we forget the password, we can bring relevant materials to the city’s admissions office to change it? How did the Municipal Admissions Office change it? I remember that there was a management connection at the bottom of the volunteer registration login page. Although it is gone, you can still access it by directly entering the URL (as shown in Figure 3)! So how do we get the administrator's username and password? Haha, in fact, we can pretend to forget our password and go to the admissions office to change it, so that we can get the username he uses (it is to look at the display screen, I don’t have the ability to remember what he typed on the keyboard), and the password is left below. I went to the website of the city’s admissions office and found that there were no loopholes in the system and homepage. There was also a forum for Dynamic Network 7.1. It seems like there is nothing I can do! Don’t worry, I tried to visit /bbs/data/ and there was a download prompt (as shown in Figure 4), and I was so dizzy! In dv_log, I found the password of admin, and tried to log in with this password and the user name I saw, but it was successful! ! Now I can manage the city’s candidate files! sweat! Don’t dare to move around, so as not to be caught, so you can withdraw and flee!
This year, a province implemented online application for college entrance examination applications. During the simulation application drill, it was said that all applications were filled in on the Internet, but because the number of visits suddenly increased during the drill, the Internet speed was slow, and even the normal access was denied service. I sweat wildly! Later, when considering this issue, the above mentioned only implemented online application applications in two cities, and the others were filled in by the local area network and agreed to submit them. During the drill, I was not at ease with the security of this system, but I couldn't find any loopholes at that time. Later I heard that the city I was in was one of the two cities that filled out the Internet. Recently, I really discovered a loophole during the filling process and sweated wildly again!
Let’s talk about the security measures of this system first. After my inspection during the drill, the system and scripts of this site are doing very well. Now, if you want to find vulnerabilities, you can only start from other aspects. Before officially filling out the application form, this system requires you to fill in the admission ticket number, registration number, ID number, password and verification code to log in (as shown in Figure 1). After logging in, you must change your password before you can start filling in. After changing your password, you only need to enter the admission ticket number and password, and the verification code can log in. As shown in Figure 2, the page after logging in after changing the password. At first glance, it seems that it is safe to fill in so many information, but it is not.
Let’s take a look at what he asked to enter. In fact, the most important thing is the password (nonsense). Let’s not talk about the situation where the password changed after you are idiotic, let’s first take a look at how his original password was obtained. The original password is composed of the card number and password of a volunteer application card issued by the examination institute for free. There are more than a dozen digits in total, so it is unlikely to explode. But I noticed that the teacher sent this card randomly, and it did not correspond one by one. So can you log in to multiple accounts with the same password? hehe,We'll know if we try it。 I logged in shortly after I got the card and changed my password. It happened that one of my classmates' cards was lost. I was about to go to the city admissions office to solve the problem, so I asked him to try to log in with my card, but... it turned out to be successful, sweat~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~. This way,We'll have a chance? ?
Maybe some people will say how we know other people’s admission ticket numbers, registration numbers and ID numbers. It is actually very simple. Our registration numbers are arranged in order of class and student number. So as long as we know other people’s classes and student number and then according to our own registration number, we can launch other people’s registration number. The admission ticket numbers are arranged in order of registration number, so we can infer other people’s admission ticket numbers based on the registration number. As for the ID card, it is composed of 6 fixed numbers + date of birth + 4 digits (the last digit may also be X). We know the first 6 digits, and the date of birth, we can ask the other party to write a classmate record, and we can batch test the last 4 digits through software (I have tried the password error N times and you can log in). The most troublesome thing is the verification code. At present, I can only use my hands to lose this, but I heard that there are techniques that can identify verification codes. If it is true, it will be much simpler.
Think about it, how big a big deal is to fill out the college entrance examination application. If someone really destroys it, then it will be... Of course, if someone changes other people's password from the beginning, they can help you change your password by just bringing relevant materials to the municipal admissions office. At worst, it's a little bit harder. Then, after filling in the application, change other people's password and then change his application? He would definitely be surprised to ask for a confirmation of printing, but it is not that simple to change his choice at this time, because the modification of the choice after printing is prohibited according to regulations. So how can I change my password after someone has filled in his application? You must know that the password was changed by himself at that time!
Haha, haven’t we said before that if we forget the password, we can bring relevant materials to the city’s admissions office to change it? How did the Municipal Admissions Office change it? I remember that there was a management connection at the bottom of the volunteer registration login page. Although it is gone, you can still access it by directly entering the URL (as shown in Figure 3)! So how do we get the administrator's username and password? Haha, in fact, we can pretend to forget our password and go to the admissions office to change it, so that we can get the username he uses (it is to look at the display screen, I don’t have the ability to remember what he typed on the keyboard), and the password is left below. I went to the website of the city’s admissions office and found that there were no loopholes in the system and homepage. There was also a forum for Dynamic Network 7.1. It seems like there is nothing I can do! Don’t worry, I tried to visit /bbs/data/ and there was a download prompt (as shown in Figure 4), and I was so dizzy! In dv_log, I found the password of admin, and tried to log in with this password and the user name I saw, but it was successful! ! Now I can manage the city’s candidate files! sweat! Don’t dare to move around, so as not to be caught, so you can withdraw and flee!