From: Roland Häder Date: Thu, 28 Jul 2016 07:57:30 +0000 (+0200) Subject: Continued: X-Git-Url: https://git.mxchange.org/?a=commitdiff_plain;h=42ff8dfd602c876ce3bc95100719148e6695d944;p=ctracker.git Continued: - esystem is, well, system is better to look for - block content-type header-insertion Signed-off-by: Roland Häder --- diff --git a/libs/lib_detector.php b/libs/lib_detector.php index 5ed9917..8a13dda 100644 --- a/libs/lib_detector.php +++ b/libs/lib_detector.php @@ -73,7 +73,7 @@ function initCrackerTrackerArrays () { // Other Linux programs (+ brace) 'locate(', 'grep(', 'kill(', 'mcd(', 'mrd(', 'rm(', 'mv(', 'rmdir(', 'chmod(', 'chmod(', 'chown(', 'chgrp(', 'passwd(', 'vi(', 'cp(', - 'mdir(', 'esystem(', 'chr(', 'wget(', 'rush(', 'echr(', + 'mdir(', 'system(', 'chr(', 'wget(', 'rush(', 'echr(', // Other Linux programs (+ equal) 'mcd=', 'mrd=', 'chmod=', 'chr=', 'rush=', 'echr=', @@ -135,6 +135,9 @@ function initCrackerTrackerArrays () { // Attempts to insert links into a badly secured URL '%3E%3C', + // Request header being inserted + 'content-type', + // /proc/ and other forbidden paths 'proc/self/environ',