وجود در : تمامی ورژن ها (+ 7.3)
درجه خطر : متوسط
روش عمل :
1- فایل engine/classes/parse.class.php رو باز کنید و عبارت زیر رو پیدا کنید :
$find= array(
'/about:/si',
'/vbscript:/si',
"'\[quote\]'si",
"'\[quote=(.+?)\]'si",
"'\[/quote\]'si",
);
$replace=array(
"about<b></b>:",
"vbscript<b></b>:",
"<!--QuoteBegin--><div class=\"quote\"><!--QuoteEBegin-->",
"<!--QuoteBegin \\1 --><div class=\"title_quote\">{$lang['i_quote']} \\1</div><div class=\"quote\"><!--QuoteEBegin-->",
"<!--QuoteEnd--></div><!--QuoteEEnd-->",
);
2- کدی که پیدا کردید رو پاک و کد زیر رو جایگزین کنید :
موفق باشید !
درجه خطر : متوسط
روش عمل :
1- فایل engine/classes/parse.class.php رو باز کنید و عبارت زیر رو پیدا کنید :
$find= array(
'/about:/si',
'/vbscript:/si',
"'\[quote\]'si",
"'\[quote=(.+?)\]'si",
"'\[/quote\]'si",
);
$replace=array(
"about<b></b>:",
"vbscript<b></b>:",
"<!--QuoteBegin--><div class=\"quote\"><!--QuoteEBegin-->",
"<!--QuoteBegin \\1 --><div class=\"title_quote\">{$lang['i_quote']} \\1</div><div class=\"quote\"><!--QuoteEBegin-->",
"<!--QuoteEnd--></div><!--QuoteEEnd-->",
);
2- کدی که پیدا کردید رو پاک و کد زیر رو جایگزین کنید :
$find= array(
'/about:/i','/vbscript:/i','/onclick/i','/onload/i','/onunload/i','/onabort/i',
'/onerror/i','/onblur/i','/onchange/i','/onfocus/i','/onreset/i','/onsubmit/i',
'/ondblclick/i','/onkeydown/i','/onkeypress/i','/onkeyup/i','/onmousedown/i',
'/onmouseup/i','/onmouseover/i','/onmouseout/i','/onselect/i','/javascript/i',
"'\[quote\]'si",
"'\[quote=(.+?)\]'si",
"'\[/quote\]'si",
);
$replace=array(
"about:","vbscript<b></b>:","onclick","onload","onunload",
"onabort","onerror","onblur","onchange","onfocus",
"onreset","onsubmit","ondblclick","onkeydown","onkeypress",
"onkeyup","onmousedown","onmouseup","onmouseover",
"onmouseout","onselect","javascript",
"<!--QuoteBegin--><div class=\"quote\"><!--QuoteEBegin-->",
"<!--QuoteBegin \\1 --><div class=\"title_quote\">{$lang['i_quote']} \\1</div><div class=\"quote\"><!--QuoteEBegin-->",
"<!--QuoteEnd--></div><!--QuoteEEnd-->",
);
'/about:/i','/vbscript:/i','/onclick/i','/onload/i','/onunload/i','/onabort/i',
'/onerror/i','/onblur/i','/onchange/i','/onfocus/i','/onreset/i','/onsubmit/i',
'/ondblclick/i','/onkeydown/i','/onkeypress/i','/onkeyup/i','/onmousedown/i',
'/onmouseup/i','/onmouseover/i','/onmouseout/i','/onselect/i','/javascript/i',
"'\[quote\]'si",
"'\[quote=(.+?)\]'si",
"'\[/quote\]'si",
);
$replace=array(
"about:","vbscript<b></b>:","onclick","onload","onunload",
"onabort","onerror","onblur","onchange","onfocus",
"onreset","onsubmit","ondblclick","onkeydown","onkeypress",
"onkeyup","onmousedown","onmouseup","onmouseover",
"onmouseout","onselect","javascript",
"<!--QuoteBegin--><div class=\"quote\"><!--QuoteEBegin-->",
"<!--QuoteBegin \\1 --><div class=\"title_quote\">{$lang['i_quote']} \\1</div><div class=\"quote\"><!--QuoteEBegin-->",
"<!--QuoteEnd--></div><!--QuoteEEnd-->",
);
موفق باشید !
تاریخ انتشار: 23 آبان 1387
آخرین ویرایش: 25 تير 1390
ارسال کننده: Psycho
AHMAD-SE، peymandavati و vahid_esp و 17 نفر دیگر تشکر کردهاند.
تبليغات
اطلاعات