This article mainly introduces the guard dedecms advertising content into the back door, need friends can under reference

dedecms advertising contents do not limit, can input information, script and written to the file, and cause the trojans implants!

this patch, is to prevent the advertising with the PHP script is written to the file!

the core code:

ad_js. PHP

code is as follows:


//prohibited writing and PHP script about the character information
//==========================================================================
the if ((strripos ($adbody "<?") >=0) | | (strripos ($adbody, "{dede: PHP}") >=0) | | (strripos ($adbody, "PHP") >=0))
{die (" document. The write (' to disable ads, there may be a risk! '); "); }
/==========================================================================

mytag_js. PHP

code is as follows:


//prohibited writing and PHP script about the character information
//==========================================================================
the if ((strripos ($myvalues "<?") >=0) | | (strripos ($myvalues, "PHP") >=0))
{die (" document. The write (' to disable ads, there may be a risk! '); "); }
/==========================================================================

method of use:

the

ad_js. PHP
mytag_js. PHP

2 files into plug-in directory covers the original file is ok!

advice covering after download D shield _Web killing again all the killing, prevent had left by the back door! Please choose
when killing killing all files, because the back door is. HTM or. Inc extension approaches such as hidden!

package download: dedecms_stop_php_ad. Rar


This concludes the body part