Menu
▾
▴
Re: [Phpwiki-talk] IMPORTANT More UpLoad hacks
|
From: Sabri L. <sab...@st...> - 2007-04-12 13:12:20
|
Reini Urban wrote: >Via the Phpwiki 1.3.x UpLoad feature some hackers from russia upload a >php3 or php4 file, >install a backdoor at port 8081 and have access to your whole >disc and overtake the server. > >See http://ccteam.ru/releases/c99shell I think that the URL is wrong. >The uploaded file has a php, php3 or php4 extension and looks >like a gif to the mime magic. >So apache usually accepts it. > >To fix this issue at first move the lib/plugin/UpLoad.php file >out of this directory. > >You can fix it by adding those two lines to your list of >disallowed extensions: > >php3 >php4 > >Currently only php is disallowed. Regards, -- Sabri. |
