diff options
| author | jvoisin | 2020-04-24 15:12:43 +0200 |
|---|---|---|
| committer | jvoisin | 2020-04-24 15:12:43 +0200 |
| commit | f0d873bd8295f06773f66b359581902a3b528341 (patch) | |
| tree | 702d81144636a05643935d5056b4068bc0f7cc1b | |
| parent | a205f438dbc9a498d4cad31a54e50b63007d4ef2 (diff) | |
Add yet another disabled_functions bypass
| -rw-r--r-- | config/default.rules | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/config/default.rules b/config/default.rules index dc749e5..1446fb8 100644 --- a/config/default.rules +++ b/config/default.rules | |||
| @@ -42,6 +42,9 @@ sp.disable_function.function("mail").param("additional_parameters").value_r("\\- | |||
| 42 | # Since it's now burned, me might as well mitigate it publicly | 42 | # Since it's now burned, me might as well mitigate it publicly |
| 43 | sp.disable_function.function("putenv").param("setting").value_r("LD_").drop() | 43 | sp.disable_function.function("putenv").param("setting").value_r("LD_").drop() |
| 44 | 44 | ||
| 45 | # This one was burned in Nov 2019 - https://gist.github.com/LoadLow/90b60bd5535d6c3927bb24d5f9955b80 | ||
| 46 | sp.disable_function.function("putenv").param("setting").value_r("GCONV_").drop() | ||
| 47 | |||
| 45 | # This is also burned: | 48 | # This is also burned: |
| 46 | # ini_set('open_basedir','..');chdir('..');…;chdir('..');ini_set('open_basedir','/');echo(file_get_contents('/etc/passwd')); | 49 | # ini_set('open_basedir','..');chdir('..');…;chdir('..');ini_set('open_basedir','/');echo(file_get_contents('/etc/passwd')); |
| 47 | # Since we have no way of matching on two parameters at the same time, we're | 50 | # Since we have no way of matching on two parameters at the same time, we're |