Vlada Smitka
Forum Replies Created
-
Forum: Plugins
In reply to: [BBQ Firewall – Fast & Powerful Firewall Security] Idea: better SQLi filterOf course ??
Assume unsanitized input parameter “p”:
SELECT * FROM table WHERE id=$_GET[‘p’]
You can use blind SQL injection with this parameter – something like:
p= 1 – IF(SUBSTRING( password, 1, 1) = ‘p’, SLEEP(10), 0)
(you can also use AND/OR,…)
If the first char of password is ‘p’ the response of the database will take 10 seconds. If not it will be immediate.
You can also use BENCHMARK instead of SLEEP(x):
BENCHMARK(100000000, rand())
White chars are allowed between command and bracket – SLEEP (10)
Good regexp may be e.g.
sleep\s*\(More info: https://www.owasp.org/index.php/Blind_SQL_Injection
Forum: Plugins
In reply to: [WP-PostRatings] Time range – highest ratedHi ajvngou_,
you can try this: https://gist.github.com/lynt-smitka/bb5706bc0303553477bc
Upload my code into wp-content/mu-plugins directory and select “Highest Score By Time Range”.
Hi yoyos33,
try their whitelist “plugin”: https://perishablepress.com/bbq-whitelist-blacklist/
If you want to control it from administration, you can try to use my GUI for BBQ which is based on the plugin mentioned above.
I noticed possibility to use hooks in your plugin.
So I made simple GUI interface to manage blacklists and whitelists from WP admin. It is based on your small addons.
Yes, it is pretty complicated logical condition ??
The rule from converter says:
any of “bad rules” = 1 AND not loggedout AND not jetpack-sso AND not rp AND not logged_in AND not googleapis => “BLOCK”
If any of loggedout OR jetpack OR rp OR logged_in OR googleapis is true than the result is NOBLOCK.
I think this is the same as my ~*, BLOCK from any of “bad rules” can be overwritten by any of the last rules.
The rule for preventing access to the wp-config.php does something differ than iTSec. iTSec prevent access to this file directly, but my rule block all queries contain “wp-config.php” string:
e.g. exploit to slider revolution plugin:
/admin-ajax.php?action=some_action&img=../wp-config.phpThanks for the appreciation of my presentation ??