中国网络渗透测试联盟

标题: fckeditor漏洞 [打印本页]
作者: admin    时间: 2012-9-13 17:02
标题: fckeditor漏洞
) @% g9 ^0 {' l; l. [. a+ t: X
fckeditor/editor/filemanager/browser/default/browser.html?Type=Image&Connector=connectors/asp/connector.asp
' s$ t2 M' C+ S7 @7 I, qhttp://www.china-photo-model.com ... aspx/connector.aspx2 }8 t& I9 r4 b2 F) `
# c* t( B: I8 r4 m/ Q

. E) |8 a  b* ]9 H2 ^http://yeni.kadikoy.bel.tr/globa ... ctors/jsp/connector
, l- C8 ?1 y# R& g# d1 N" {) W
& V, v( y: _1 T+ e$ {( c! o" e2 W3 s+ X; e! E1 k' `, R8 b6 ~+ ]
2 h. r2 e2 |, C2 ~

0 [# M! ^! {- I1 a5 M+ H; s# X: I7 `' Y
. u9 t  R( I0 y- n  |# c查看配置和列出目录下的文件.
4 `) S' M7 r; H2 ~2 Y% M3 e0 T2 A5 S5 N9 ^2 d) F  l+ p
9 c& L- K1 ?# q8 ^0 E; {% }- u
http://www.xxx.com/fckeditor/edi ... p;CurrentFolder=%2F
. p, z, n8 \  _% z) a3 b0 Y, Phttp://www.xxx.com/fckeditor/edi ... p;CurrentFolder=%2F
/ h' A6 T! P2 ~$ @: a1 Q8 j& m" a! E5 {/ H5 M$ @7 Y
上传地址:
% m" m+ i5 Y. Z
4 d* K/ h# D' k9 @! Lhttp://www.xxx.com/fckeditor/edi ... p;CurrentFolder=%2F6 Z6 X  r1 q2 ?- U' [
http://www.xxx.com/fckeditor/edi ... ctors/jsp/connector    ../为根目录



欢迎光临 中国网络渗透测试联盟 (https://www.cobjon.com/) Powered by Discuz! X3.2