Anleye v3.0 code Audit

A kiyou works on a portal in a certain place. The website is always accessible. so. let me wait for a small dish to help you read the dishes.
 
Just a few eyes ..
 
\ Common \ lib \ FCKeditor \ editor \ filemanager \ upload \ php \ config. php
 
$ Config ['allowdextension'] ['file'] = array ();
$ Config ['deniedextension'] ['file'] = array ('php', 'php2', 'php3', 'php4 ', 'php5', 'phpml ', 'pwm', 'inc', 'asp ', 'aspx', 'ascx', 'jsp ', 'cfm', 'cfc', 'pl', 'bat ', 'exe ', 'com', 'dll ', 'vbs', 'js', 'reg ', 'cgi ');
$ Config ['allowdextension'] ['image'] = array ('jpg ', 'gif', 'jpeg', 'png ');
$ Config ['deniedextension'] ['image'] = array ();
$ Config ['allowdextension'] ['flash'] = array ('swf ', 'fla ');
$ Config ['deniedextension'] ['flash'] = array (); fundamental wood-Color Filtering media has wood-color ..
 
News \ install \ index. php. bak actually brought a dede .. although it is a bak backup file .. however, in apache, bak is not parsed by default... so is parsed to php
Www.2cto.com
<? Php
/**
*
*/
$ InsLockfile = dirname (_ FILE _). '/install_lock.txt ';
/* Omit Code */
Foreach (Array ('_ get',' _ Post', '_ COOKIE') as $ _ request)
{
Foreach ($ _ request as $ _ k = >$ _ v) $ {$ _ k} = RunMagicQuotes ($ _ v );
}
 
Require_once (DEDEINC. '/common. func. php ');
 
If (file_exists ($ insLockfile ))
{
Exit ("the program has been installed. If you are sure you want to reinstall it, delete install/install_lock.txt from FTP first! ");
}
?>
 
Dede is familiar with shell in the background ..
 
Typical global variable overwrite...
 
In fact, it is dede secondary development: http://www.17558.net/post/576.html
 
This stuff, I installed it to the customer ......
 
From:/forum.90sec.org