扫描小程序码分享
每周日,下午14:00~15:00,都会收到空参数的支付回调。看referer内容,是关于xml xxe漏洞攻击的内容。但是代码检测过已经过处理,测试验证也无问题的。
想知道,这个空参数回调,是微信的什么检测机制请求吗?我是否需要做什么处理
x-real-ip:42.187.137.76
referer:https://pay.weixin.qq.com/wiki/doc/api/micropay.php?chapter=23_5&index=3
1 个回答
加粗
标红
插入代码
插入链接
插入图片
上传视频
您好,如果来源IP为:106.52.56.109和106.55.200.91,这是我们官方用来扫描xxe漏洞的请求,如确认系统无相关问题可忽略,如果有进一步疑问可联系技术支持客服咨询,(点击https://support.pay.weixin.qq.com/online-service?from=wechatpay,输入“人工”,选择问题分类为“其他问题”-“商户安全”)申请技术支持。
你好,麻烦通过点击下方“反馈信息”按钮,提供出现问题的。
{
"log_type": "trace.server",
"client_ip": "43.139.209.119",
"method": "POST",
"url": "***",
"header": "host:***;x-real-ip:100.127.133.210;x-forwarded-for:43.139.209.119, 100.127.133.210;x-forwarded-proto:https;content-length:178;remoteip:43.139.209.119;accept:text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8;content-type:application/x-www-form-urlencoded;referer:https://pay.weixin.qq.com/wiki/doc/api/micropay.php?chapter=23_5&index=3;tencent-leakscan:TST(Tencent Security Team);x-scanner-uuid:1705219058-1623028457;user-agent:Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 TST(Tencent_Security_Team);",
"input": "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\r\n<!DOCTYPE foo [\r\n\t<!ENTITY xxe SYSTEM \"http://tst2.qq.com/xxe_inject/33265cfb8e8ba4bc8c29faf7a6c4eecd\">]>\r\n<foo><value>&xxe;</value></foo>",
"code": 0,
"output": "支付异常,请联系客服(400)",
"cost_ms": 8,
"start_time": "2024-01-14 15:57:38.515",
"end_time": "2024-01-14 15:57:38.523"
}
关注后,可在微信内接收相应的重要提醒。
请使用微信扫描二维码关注 “微信开放社区” 公众号
您好,如果来源IP为:106.52.56.109和106.55.200.91,这是我们官方用来扫描xxe漏洞的请求,如确认系统无相关问题可忽略,如果有进一步疑问可联系技术支持客服咨询,(点击https://support.pay.weixin.qq.com/online-service?from=wechatpay,输入“人工”,选择问题分类为“其他问题”-“商户安全”)申请技术支持。
{"log_type": "trace.server","client_ip": "43.139.209.119","method": "POST","url": "***","header": "host:***;x-real-ip:100.127.133.210;x-forwarded-for:43.139.209.119, 100.127.133.210;x-forwarded-proto:https;content-length:178;remoteip:43.139.209.119;accept:text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8;content-type:application/x-www-form-urlencoded;referer:https://pay.weixin.qq.com/wiki/doc/api/micropay.php?chapter=23_5&index=3;tencent-leakscan:TST(Tencent Security Team);x-scanner-uuid:1705219058-1623028457;user-agent:Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 TST(Tencent_Security_Team);","input": "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\r\n<!DOCTYPE foo [\r\n\t<!ENTITY xxe SYSTEM \"http://tst2.qq.com/xxe_inject/33265cfb8e8ba4bc8c29faf7a6c4eecd\">]>\r\n<foo><value>&xxe;</value></foo>","code": 0,"output": "支付异常,请联系客服(400)","cost_ms": 8,"start_time": "2024-01-14 15:57:38.515","end_time": "2024-01-14 15:57:38.523"}