如果dnf仓库密码怎么设置被改怎么办?求帮助

金山某游戏仓库密码绕过(直接修改关键数据)
仓库密码问题在重置时信息未经过确认直接可以进行提交修改.
发送49 00 F9 46 00 01 41 00 43 32 53 5F 73 74 70 73 77 64 00 03 00 00 00 21 00 00 00 32 30 32 43 42 39 36 32 41 43 35 39 30 37 35 42 39 36 34 42 30 37 31 35 32 44 32 33 34 42 37 30 00 04 00 00 00 33 32 31 00 01 00 00 00 00
给服务器可以直接将仓库密码问题***设置为123,然后使用这个问题***可以直接修改仓库密码.
造成此的原因是修改时先验证密码正确后再修改问题,但是修改问题的时候并没有重新验证密码是否输入正确.
修复方案:
重新设置修改方式
(window.slotbydup=window.slotbydup || []).push({
id: '2467140',
container: s,
size: '1000,90',
display: 'inlay-fix'
(window.slotbydup=window.slotbydup || []).push({
id: '2467141',
container: s,
size: '1000,90',
display: 'inlay-fix'
(window.slotbydup=window.slotbydup || []).push({
id: '2467142',
container: s,
size: '1000,90',
display: 'inlay-fix'
(window.slotbydup=window.slotbydup || []).push({
id: '2467143',
container: s,
size: '1000,90',
display: 'inlay-fix'
(window.slotbydup=window.slotbydup || []).push({
id: '2467148',
container: s,
size: '1000,90',
display: 'inlay-fix'

参考资料

 

随机推荐