推荐阅读:
[AI-人工智能]免翻墙的AI利器:樱桃茶·智域GPT,让你轻松使用ChatGPT和Midjourney - 免费AIGC工具 - 拼车/合租账号 八折优惠码: AIGCJOEDISCOUNT2024
[AI-人工智能]银河录像局: 国内可靠的AI工具与流媒体的合租平台 高效省钱、现号秒发、翻车赔偿、无限续费|95折优惠码: AIGCJOE
[AI-人工智能]免梯免翻墙-ChatGPT拼车站月卡 | 可用GPT4/GPT4o/o1-preview | 会话隔离 | 全网最低价独享体验ChatGPT/Claude会员服务
[AI-人工智能]边界AICHAT - 超级永久终身会员激活 史诗级神器,口碑炸裂!300万人都在用的AI平台
目前还无法确定这次漏洞是官方有人故意为之,还是被劫持,还是被黑….
目前解决方案就是断开在线更新检测
编辑修改phpcms\modules\admin\index.php
//被注释部分
public function public_main() {
pc_base::load_app_func('global');
pc_base::load_app_func('admin');
define('PC_VERSION', pc_base::load_config('version','pc_version'));
define('PC_RELEASE', pc_base::load_config('version','pc_release'));
adminusername=param::getcookie(′adminusername′);admin_username = param::get_cookie('admin_username');adminusername=param::getcookie(′adminusername′);roles = getcache('role','commons');
userid=userid =userid=_SESSION['userid'];
rolename=rolename =rolename=roles[SESSION[′roleid′]];_SESSION['roleid']];SESSION[′roleid′]];r = this−>db−>getone(array(′userid′=>this->db->get_one(array('userid'=>this−>db−>getone(array(′userid′=>userid));
logintime=logintime =logintime=r['lastlogintime'];
loginip=loginip =loginip=r['lastloginip'];
sysinfo=getsysinfo();sysinfo = get_sysinfo();sysinfo=getsysinfo();sysinfo['mysqlv'] = mysql_get_server_info();
showheader=show_header =showheader=show_pc_hash = 1;
/*检测框架目录可写性*/
pcwriteable=iswritable(PCPATH.′base.php′);pc_writeable = is_writable(PC_PATH.'base.php');pcwriteable=iswritable(PCPATH.′base.php′);common_cache = getcache('common','commons');
logsizewarning=errorlogsize()>logsize_warning = errorlog_size()>logsizewarning=errorlogsize()>common_cache['errorlog_size'] ? '1' : '0';
adminpanel=adminpanel =adminpanel=this->panel_db->select(array('userid'=>userid),′∗′,20,′datetime′);userid), '*',20 , 'datetime');userid),′∗′,20,′datetime′);product_copyright = base64_decode('5LiK5rW355ub5aSn572R57uc5Y+R5bGV5pyJ6ZmQ5YWs5Y+4');
architecture=base64decode(′546L5Y+C5Yqg′);architecture = base64_decode('546L5Y+C5Yqg');architecture=base64decode(′546L5Y+C5Yqg′);programmer = base64_decode('546L5Y+C5Yqg44CB6ZmI5a2m5pe644CB546L5a6Y5bqG44CB5byg5LqM5by644CB6YOd5Zu95paw44CB6YOd5bed44CB6LW15a6P5Lyf');
designer=base64decode(′5byg5LqM5by6′);//obstart(); //注释此行,By:yunzhujiboshi.comincludedesigner = base64_decode('5byg5LqM5by6');
//ob_start(); //注释此行,By:yunzhujiboshi.com
includedesigner=base64decode(′5byg5LqM5by6′);//obstart(); //注释此行,By:yunzhujiboshi.comincludethis->admin_tpl('main');
//data=obgetcontents(); //注释此行,By:yunzhujiboshi.com//obendclean(); //注释此行,By:yunzhujiboshi.com//systeminformation(data = ob_get_contents(); //注释此行,By:yunzhujiboshi.com
//ob_end_clean(); //注释此行,By:yunzhujiboshi.com
//system_information(data=obgetcontents(); //注释此行,By:yunzhujiboshi.com//obendclean(); //注释此行,By:yunzhujiboshi.com//systeminformation(data); //注释此行,By:yunzhujiboshi.com
}
修改phpcms\modules\admin\templates\main.tpl.php
查找:
class=”pad-10 display”
修改为:
class=”pad-10″
至此结束
至于已经被添加了用户的请注意,以上操作并不能完全解决
目前发现的到后台模块->数据源 查看有没有一个名为123的调用,有删除
到caches目录下看是否有error_logaa.php文件删除.
目前发现的就是这些,因为自己没有出现也无法深入跟踪
没有发现以上的也不要以为就没事了,因为你的信息已经被提交到人家哪?
想搞你看心情的事情了.
所以还是替换加密解密函数吧!
宝塔服务器面板,一键全能部署及管理,送你3188元礼包,点我领取
本文标签属性:
phpcms:phpcms下载