Affected file Request

Больше
10 года 4 мес. назад #4323 от alex
alex создал тему: Affected file Request
Affected files
1 Evaluating Regex place numeric entities because html_entity_decode doesn't // do it for us. $str = /plugins/slogin_auth/yahoo/assets/yahoo-yos-social/lib/OpenID/Auth/Yadis/ParseHTML.php
2 Evaluating Regex s. $str = preg_replace('~&#x([0-9a-f]+);~ei', 'chr(hexdec("\\1"))', $str); $str = /plugins/slogin_auth/yahoo/assets/yahoo-yos-social/lib/OpenID/Auth/Yadis/ParseHTML.php

Affected file
/plugins/slogin_auth/yahoo/assets/yahoo-yos-social/lib/OpenID/Auth/Yadis/ParseHTML.php
Explanation
The method preg_replace with evaluate option can execute php code. You should check if this code is part of the original file or was injected.
Snippet
place numeric entities because html_entity_decode doesn't
// do it for us.
$str = preg_replace('~&#x([0-9a-f]+);~ei', 'chr(hexdec("\\1"))', $str);
$str = preg_replace('~&#([0-9]+);~e', 'chr(\\1)', $str);
return $

Affected file
/plugins/slogin_auth/yahoo/assets/yahoo-yos-social/lib/OpenID/Auth/Yadis/ParseHTML.php
Explanation
The method preg_replace with evaluate option can execute php code. You should check if this code is part of the original file or was injected.
Snippet
s.
$str = preg_replace('~&#x([0-9a-f]+);~ei', 'chr(hexdec("\\1"))', $str);
$str = preg_replace('~&#([0-9]+);~e', 'chr(\\1)', $str);

return $str;
}

/**
* Strip single and double quotes off of a string, if

Пожалуйста Войти или Регистрация, чтобы присоединиться к беседе.

Работает на Kunena форум

Последнее с форума

    • blogherenowgroup
    • One day, a monkey drove his car near a lake. Sudden, he saw a tiger under a tree. The tiger saw him, too. The tiger ran very fast at the monkey. The monkey was very afraid and he and his car fell...
    • в Component / JL Weather
    • blogherenowshop
    • One crisp autumn afternoon, while playing near the house, Emma noticed something shiny half-buried in the dirt. She dug it up and found an old, ornate key with intricate designs. Excited, she...
    • в Component / JL TV
    • supercontenter
    • People with eating disorders may face constipation, anemia, hormonal imbalances that purpose girls to miss their menstrual intervals, and so forth. A few sufferers may additionally increase...
    • в Component / Afisha Joomla
© 2010- JoomLine
The Joomla!® name is used under a limited license from Open Source Matters in the United States and other countries. joomline.net is not affiliated with or endorsed by Open Source Matters or the Joomla! Project.

Контакты:

email: Адрес электронной почты защищен от спам-ботов. Для просмотра адреса в вашем браузере должен быть включен Javascript.