#2676: FCKeditor 2.6.3 Directory Traversal
--------------------------+-------------------------------------------------
Reporter: chr1x2 | Owner:
Type: Bug | Status: new
Priority: High | Milestone: FCKeditor 2.6.4
Component: File Browser | Version: FCKeditor 2.6.3
Keywords: |
--------------------------+-------------------------------------------------
You may upload files and create folders without logging in the admin page.
The bug can be exploited by uploading arbitrary script files (e.g.
backdoor to the system) and execute it.
The files and folders that are created via this bug have the permission of
"777".
example:
http://yoursite.com/mambots/editors/fckeditor/editor/filemanager/browser/default/browser.html?Type=Image&Connector=../../connectors/php/connector.php
Tested in:[[BR]]
CentOS-5.2[[BR]]
httpd-2.2.3[[BR]]
php-5.1.6[[BR]]
mysql-5.0.45[[BR]]
Joomla-1.0.15
Tried to install the nightly build but I guess it's for Joomla 1.5?
--
Ticket URL: <http://dev.fckeditor.net/ticket/2676>
FCKeditor <http://www.fckeditor.net/>
The text editor for Internet
-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________
FCKeditor-Trac mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/fckeditor-trac
