The establishment of the station star Sitestar v1. 3 FCK upload vulnerability-vulnerability warning-the black bar safety net

2011-01-16T00:00:00
ID MYHACK58:62201128859
Type myhack58
Reporter 佚名
Modified 2011-01-16T00:00:00

Description

Release date: 2011-01. 1 4 Publishing author: xiaocao

Affected versions: V1. 3 Official website: http://www.sitestar.cn/

Vulnerability type: file upload Vulnerability description: this vulnerability only applies to Windows IIS6, is the FCK editor is causing,as long as it is built up of the client Station. Are there.. .

Vulnerability test:

http://site/admin/fckeditor/browser/browser.html?Type=Image&Connector=connector.php