Admin.php XSS Patch Revision II
Date: Tuesday, March 23 @ 11:10:39 CET Topic: Security
Yesterday I released a hot off the press admin.php patch. I learned of the exploit only 10 minutes prior to it. Today I found out that the graphic image doesn't show up because of it, so without further adieu, here is version number 2 such that the image works.
if ($argv[0] != "") {
if (!preg_match("/op=gfx/", "$argv[0]")) {
if (!preg_match("/admin.php/", "$refer")) {
echo "Nuke Cops Loves You http://nukecops.com";
exit;
}
}
}
|
|