Security

MG2 Security HotFix: mg2_functions.php – “addcomment()”

八 17th

REISTLIN发表在MG2

问题:

[MG2]文件写入漏洞. 配合 Apache 漏洞可以获得 Web Shell

includes/mg2_functions.php 文件中的 addcomment() 函数

解决:

编辑文件 includes/mg2_functions.php

查找:

$_REQUEST['name'] = $this->charfix($_REQUEST['name']);

替换:

$_REQUEST['name'] = str_replace( ‘.php’ , ‘.reistlin.com’ , strtolower( $this->charfix($_REQUEST['name'] );

Code By [Iwege]

Block Acunetix Web Vulnerability Scanner

三 13th

REISTLIN发表在Security

1. ASP(JScript)版。对于LBS的用户,添加或包含到 _common.asp 文件:

<%
var StopScan=”== WVS PLS GO AWAY! ==”;
var requestServer=String(Request.ServerVariables(“All_Raw”)).toLowerCase();
if(Session(“stopscan”)==1){
Response.Write(StopScan);
Response.End;
}
if(requestServer.indexOf(“acunetix“)>0){
Response.Write(StopScan);
Session(“stopscan”)=1;
Response.End;
}
%>

2. ASP(VBscript)版一般的ASP用户可以用这个,添加或包含到 conn.asp 文件:

<%
Dim StopScan,RequestServer
StopScan=”== WVS PLS GO AWAY! ==”
RequestServer=Lcase(Request.ServerVariables(“All_Raw”))
If Session(“stopscan”)=1 Then
Response.Write(StopScan)
Response.End
End If
If instr(RequestServer,”acunetix“) Then
Response.Write(StopScan)
Session(“stopscan”)=1
Response.End
End If
%>

3. PHP 版:

<?php
$http=$_SERVER["ALL_HTTP"];
If(isset($_COOKIE["StopScan"]) && $_COOKIE["StopScan"]){
die(“== WVS PLS GO AWAY! BY oldjun! ==”);
}
If(strpos(strtolower($http),”acunetix“)){
setcookie(“StopScan”, 1);
die(“== WVS PLS GO AWAY! ==”);
}
?>

Code By [Oldjun]