Shulou(Shulou.com)06/01 Report--

KindEditor website editor component upload vulnerability early warning example analysis, in view of this problem, this article introduces the corresponding analysis and solution in detail, hoping to help more partners who want to solve this problem to find a more simple and easy way.

0x00 vulnerability background

February 21, 2019, 360CERT monitoring industry security companies released a number of government websites that were uploaded to abnormal HTML pages. Attackers exploit vulnerabilities in the KindEditor editor components of these websites. The upload_json.php upload function files in the KindEditor component are allowed to be called directly to achieve arbitrary upload of files such as htm,html,txt to the server.

0x01 vulnerability details

This vulnerability was proposed on July 14, 2017 and can be directly uploaded (html, htm, txt) files using php/upload_json.php under the KindEditor project directory without any verification measures.

0x02 repair recommendation

Delete the sample code in the php/* directory in a timely manner, and the framework author also mentioned that the code here is only for testing, not directly in a production environment.

0x03 vulnerability verification

This is the answer to the analysis of KindEditor website editor component upload vulnerabilities using early warning examples. I hope the above content can be of some help to you. If you still have a lot of doubts to be solved, you can follow the industry information channel for more related knowledge.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.