Z-Blog1.8 Permission Bypass fix

During the Blog last night, I studied the Z-Blog program, and my teacher also gave me a patch. I tried it and it was useless. I don't know if it was,

First, the patch my instructor mentioned is include. the above code of the asp file is added: If Not CheckRights (strAct) Then Call ShowError (6). This is a piece of code that restricts redirection,

I added it, and the access is the same. I don't know if it is not supported by the XP system or why. I think it should be a restriction on your use of redirection in the Linux system, does not work for other systems,

 

There is my own solution. I spent one night last night. I went ,,

That is to modify the background management directory. I studied it for one night yesterday and finally got OK .. But today I went to Baidu, and someone already wrote out how to change and manage the directory.

I read the code for one night yesterday, and added analysis and not much to talk about it. Let's look at it directly.

The default logon portal for Z-Blog is "login. asp" under the root directory. After Successful Logon, the system automatically jumps to the "admin" directory for website management. To modify the Default background address, you need to change the two parts, one is the login entry "login. asp", and the other is the "admin" directory name.

File name to be modified: cmd. asp
FUNCTION/c_system_manage.asp
FUNCTION/c_system_event.asp
ADMIN/edit_fckeditor.asp
The first step is to modify the page file of the login box. Its file is in cmd. asp: this file is in your root directory. You only need to open it in notepad and search for login. asp, just fine, and then replace the xxx you want. asp, but after my discovery, the background login address does not need to be modified using this file, but can be directly modified. Either of these methods can be used.

The second is to modify the management directory. This is troublesome because the Z-Blog program applies, which also causes many vulnerabilities. Alas,

1: Open cmd in notepad. asp file, which is the same as the above file. This time, you need to search for admin/(remember the slash "/" to be added), which contains 30 to be modified, for example, if you want to change the management directory to Morker, you just need to replace the admin/you searched with Morker. Remember that there are 30,

2: Modify the file in the same way.

FUNCTION/c_system_manage.asp (4 to be modified)
FUNCTION/c_system_event.asp (2 to be modified)
ADMIN/edit_fckeditor.asp (3 to be modified)

3: After modification, you can change the name of your root directory ADMIN to what you want, such as Morker

 

OK. The solution is just like this.