Home > Website Builders > Cloud Servers

A few questions on Dedecms

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

Intermediary transaction http://www.aliyun.com/zixun/aggregation/6858.html ">seo diagnose Taobao guest stationmaster buy cloud host technology Hall

Just read the friend's article "on the Dedecms of several questions", no matter what angle to think, are very pertinent. Here, I also say a few things to talk about the official attitude.

With Dede for nearly 1 years, and its loopholes, this is indeed very normal. But the official attitude was more chilling ...

Let me give you an example probably at the end of August, I accidentally found a can make 80% with Dede site crash loophole, this loophole is very serious, because I personally found, I am in Baidu search Dede do the station, most have this loophole, only a very few do not.

Among the sites found are ding famous websites in the industry. Of course, I didn't do any damage. At that time, I was in the official post, because of fear of the public after the illegal use, I did not directly say what is the loophole.

Post sent out, only one of the owner of the cold back sentence, off work. Later, the official QQ contact, and finally look forward to their QQ, so and they contact, now in retrospect, feeling that I was begging them the same. That attitude is really unpleasant. It's not easy to "ask" them to pay attention to this loophole, they are also the attitude you love to say.

Finally, of course, tell them the loophole, 3 hours later, there is no point of gratitude or results of the response. Do I send a post to ask the patch out? The answer is "being made ..." (I made this patch myself, it didn't take 3 minutes)

It was almost the third day, and they finally said it was fixed. Sadly, there has been no patch. There is no action, until I press the time, still do not have this patch. A few days ago I downloaded a new version of the test, only to find that the original new program already has patches, but no separate patches. Don't know why?

I found a more serious loophole when the leak was discovered, and if the last 80% was a bit exaggerated, the 85% would never be exaggerated. This loophole is even more serious. Covers all versions. The first vulnerability involved only v5.x versions,

Unfortunately, I told them after this thing, Ah, others simply ignore me. Left them n times, others do not ask. This is the official attitude ... However, I also figured out, the official is like this, and it's none of my business. I have to keep this loophole, in the future to see which station uncomfortable on the invasion is ...

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
java questions on arrays interview questions on process management in linux questions to ask a data scientist a server on minecraft vnc on a mac gaming on a server dreaming on a cloud
Related Article
The complete collection of SQL statement operations is worth ...
Some suggestions for improving SQL execution efficiency
A collection of sophisticated SQL statement techniques
3 Steps to address SQL injection pitfalls
SQL Optimization Experience Summary 34
Search results sorted by matching fields

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

Hot Article
Hot Tags
computing conference access forum computer class data get http html applications
Popular Keywords
about the cloud a forums a http and sign a websites am i black listed a firewall a dota a application an express

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More