fckeditor 2.63 0day vulnerabilities-vulnerability warning-the black bar safety net

ID MYHACK58:62201026808
Type myhack58
Reporter 佚名
Modified 2010-04-26T00:00:00


First of all, the way. This can be said that the fckeditor 2.63 oday. Currently know more people.


http://hbkingco.com//fckeditor/editor/filemanager/connectors/uploadtest.html this two page, is a dead key. Upload xx. asa;. jpg

After uploading, the path naturally came out. Horses for xx. asa; note that the back;

In addition to 2. 6 3.

Fckeditor substantially each version can be so utilized.

Upload is not strict. it.

It can be said that IIS G6. 0 vulnerabilities.