Papa Kuhikuhi ʻatikala
Ma kahi o 90% ke kumu o "malicious code".
WordPressʻOi aku ma mua o 80% o nā pūnaewele nā plugins e lawe mai i nā code malicious i loko o nā moʻokāki pūnaewele (aia nā plugins pūnaewele mana, nā plugins streaming online, etc.).
ʻO ka mea ʻē aʻe, ʻo ke kumumanaʻo (cracked version, pirated theme) he "code malicious" a i ʻole "backdoor Trojan horse" e komo i ka kikowaena e hoʻolaha i ka pōʻino.
i kēia manawa,Chen WeiliangE hōʻike iā ʻoe pehea e loaʻa ai ma mua o ka manawa ma ka nānā ʻana i ka code theme WordPress?
E noʻonoʻo a kāpae i nā code ʻino ma function.php
ʻO ka mea maʻamau e pili ana i ka "code malicious" ma WordPress ʻo ia ka hana (s).php ma ka papa kuhikuhi kumuhana.
Ma ka hope o ka waihona function.php, loaʻa ka manaʻo pani e like me kēia:
//全部结束 ?>
Inā ʻike ʻoe ʻaʻohe manaʻo pani e like me ia, maopopo maoli ʻoe ua hoʻopili ʻia kāu faila function.php a pono ʻoe e nānā.
He aha ke code malicious o WordPress theme?
No ka laʻana, ʻo kēia laina code:
- hana _checkactive_widgets
- hana _check_active_widget
- hana _get_allwidgets_cont
- hana _get_all_widgetcont
- hana stripos
- hana srripos
- hana scandir
- hana _getprepare_widget
- hana _prepared_widget
- hana __popular_posts
- add_action("admin_head", "_checkactive_widgets");
- add_action("init", "_getprepare_widget");
- _hōʻoia_isactivate_widgets
- _check_isactive_widget
- _get_allwidgetscont
- _prepare_widgets
- __kaulana_kaulana
- Kūʻokoʻa kēlā me kēia lālani.
- Inā loaʻa iā ʻoe kekahi o nā code i luna ma functions.php a laila e loaʻa paha ʻoe i ka maʻi ʻino.
- Ma waena o lākou, hana, add_action, a me nā mea ʻē aʻe he code maʻamau i pili i ka "code malicious" a me ka "hana hoʻomākaukau".
Pehea e wehe ai i ka function.php malicious virus code?
He maʻalahi hoʻi e hoʻomaʻemaʻe.
Ma ka waihona function.php wale nō, e ʻimi i ke code ma luna aʻe a holoi.
Akā i ka wā i loaʻa ai ka maʻi, e hoʻopili ʻia nā kumuhana āpau i ka papa kuhikuhi kumuhana.
No laila ʻike wale ʻoe ʻaʻole kūpono ke kumuhana i hoʻohana ʻia i kēia manawa, a i ka wā e hoʻomaʻemaʻe ʻia, e hana koke ʻia.
Ma hope o ka hoʻomaʻemaʻe ʻana i ke code theme, hoʻonohonoho i ka faila functions.php i nā ʻae 444 a laila hoʻomaʻemaʻe i nā kumuhana ʻē aʻe.
ʻO ka hope, pono ʻoe e hoʻololi i nā ʻae i ka faila functions.php,Chen WeiliangManaʻo ʻia ʻo 444 mau ʻae i palekana loa.
Ke makemake ʻoe e hoʻololi, ʻoi aku ka maikaʻi o ka hoʻololi ʻana a laila.
Hope Chen Weiliang Blog ( https://www.chenweiliang.com/ ) kaʻana like "He aha ke code malicious o WordPress theme?E kōkua iā ʻoe.
Welina mai e kaʻana like i ka loulou o kēia ʻatikala:https://www.chenweiliang.com/cwl-1579.html
Welina mai i ke kahawai Telegram o ka moʻomanaʻo ʻo Chen Weiliang e kiʻi i nā mea hou loa!
📚 He waiwai nui kēia alakaʻi, 🌟He manawa kakaikahi kēia, mai poina! ⏰⌛💨
Kaʻana like a like inā makemake ʻoe!
ʻO kāu kaʻana like a me kou makemake ʻo kā mākou hoʻoikaika mau!