[geeklog-cvs] Geeklog-1.x/plugins/spamx BlackList.Examine.class.php, 1.12, 1.13 DeleteComment.Action.class.php, 1.6, 1.7 EditBlackList.Admin.class.php, 1.13, 1.14 EditHeader.Admin.class.php, 1.10, 1.11 EditIP.Admin.class.php, 1.12, 1.13 EditIPofURL.Admin.class.php, 1.11, 1.12 Header.Examine.class.php, 1.5, 1.6 IP.Examine.class.php, 1.11, 1.12 IPofUrl.Examine.class.php, 1.5, 1.6 Import.Admin.class.php, 1.14, 1.15 LogView.Admin.class.php, 1.10, 1.11 MTBlackList.Examine.class.php, 1.11, 1.12 MailAdmin.Action.class.php, 1.14, 1.15 MassDelTrackback.Admin.class.php, 1.10, 1.11 MassDelete.Admin.class.php, 1.21, 1.22 ProjectHoneyPot.Examine.class.php, 1.3, 1.4 SLV.Examine.class.php, 1.1, 1.2 SLVbase.class.php, 1.6, 1.7 SLVreport.Action.class.php, 1.1, 1.2 SLVwhitelist.Admin.class.php, 1.7, 1.8 functions.inc, 1.36, 1.37 install_defaults.php, 1.5, 1.6
Dirk Haun
dhaun at qs1489.pair.com
Sun Sep 21 04:37:10 EDT 2008
Update of /cvsroot/geeklog/Geeklog-1.x/plugins/spamx
In directory qs1489.pair.com:/tmp/cvs-serv33344/plugins/spamx
Modified Files:
BlackList.Examine.class.php DeleteComment.Action.class.php
EditBlackList.Admin.class.php EditHeader.Admin.class.php
EditIP.Admin.class.php EditIPofURL.Admin.class.php
Header.Examine.class.php IP.Examine.class.php
IPofUrl.Examine.class.php Import.Admin.class.php
LogView.Admin.class.php MTBlackList.Examine.class.php
MailAdmin.Action.class.php MassDelTrackback.Admin.class.php
MassDelete.Admin.class.php ProjectHoneyPot.Examine.class.php
SLV.Examine.class.php SLVbase.class.php
SLVreport.Action.class.php SLVwhitelist.Admin.class.php
functions.inc install_defaults.php
Log Message:
Fixed protection against direct execution on non-case sensitive file systems
Index: IP.Examine.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/IP.Examine.class.php,v
retrieving revision 1.11
retrieving revision 1.12
diff -C2 -d -r1.11 -r1.12
*** IP.Examine.class.php 5 May 2007 18:28:39 -0000 1.11
--- IP.Examine.class.php 21 Sep 2008 08:37:08 -0000 1.12
***************
*** 13,18 ****
*/
! if (strpos ($_SERVER['PHP_SELF'], 'IP.Examine.class.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 13,18 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'IP.Examine.class.php') !== false) {
! die('This file can not be used on its own!');
}
Index: EditIPofURL.Admin.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/EditIPofURL.Admin.class.php,v
retrieving revision 1.11
retrieving revision 1.12
diff -C2 -d -r1.11 -r1.12
*** EditIPofURL.Admin.class.php 23 May 2008 08:59:12 -0000 1.11
--- EditIPofURL.Admin.class.php 21 Sep 2008 08:37:08 -0000 1.12
***************
*** 14,18 ****
*/
! if (strpos($_SERVER['PHP_SELF'], 'EditIPofURL.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
--- 14,18 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'EditIPofURL.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
Index: EditHeader.Admin.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/EditHeader.Admin.class.php,v
retrieving revision 1.10
retrieving revision 1.11
diff -C2 -d -r1.10 -r1.11
*** EditHeader.Admin.class.php 23 May 2008 08:59:12 -0000 1.10
--- EditHeader.Admin.class.php 21 Sep 2008 08:37:08 -0000 1.11
***************
*** 15,19 ****
*/
! if (strpos($_SERVER['PHP_SELF'], 'EditHeader.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
--- 15,19 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'EditHeader.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
Index: EditBlackList.Admin.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/EditBlackList.Admin.class.php,v
retrieving revision 1.13
retrieving revision 1.14
diff -C2 -d -r1.13 -r1.14
*** EditBlackList.Admin.class.php 23 May 2008 08:59:12 -0000 1.13
--- EditBlackList.Admin.class.php 21 Sep 2008 08:37:08 -0000 1.14
***************
*** 14,18 ****
*/
! if (strpos($_SERVER['PHP_SELF'], 'EditBlackList.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
--- 14,18 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'EditBlackList.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
Index: functions.inc
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/functions.inc,v
retrieving revision 1.36
retrieving revision 1.37
diff -C2 -d -r1.36 -r1.37
*** functions.inc 31 May 2008 07:55:08 -0000 1.36
--- functions.inc 21 Sep 2008 08:37:08 -0000 1.37
***************
*** 14,18 ****
*/
! if (strpos($_SERVER['PHP_SELF'], 'functions.inc') !== false) {
die ('This file can not be used on its own.');
}
--- 14,18 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'functions.inc') !== false) {
die ('This file can not be used on its own.');
}
Index: Import.Admin.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/Import.Admin.class.php,v
retrieving revision 1.14
retrieving revision 1.15
diff -C2 -d -r1.14 -r1.15
*** Import.Admin.class.php 25 Nov 2007 06:56:05 -0000 1.14
--- Import.Admin.class.php 21 Sep 2008 08:37:08 -0000 1.15
***************
*** 19,23 ****
*/
! if (strpos($_SERVER['PHP_SELF'], 'Import.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
--- 19,23 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'Import.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
Index: Header.Examine.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/Header.Examine.class.php,v
retrieving revision 1.5
retrieving revision 1.6
diff -C2 -d -r1.5 -r1.6
*** Header.Examine.class.php 10 Dec 2006 08:57:49 -0000 1.5
--- Header.Examine.class.php 21 Sep 2008 08:37:08 -0000 1.6
***************
*** 15,20 ****
*/
! if (strpos ($_SERVER['PHP_SELF'], 'Header.Examine.class.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 15,20 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'Header.Examine.class.php') !== false) {
! die('This file can not be used on its own!');
}
***************
*** 22,26 ****
* Include Abstract Examine Class
*/
! require_once($_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php');
/**
--- 22,26 ----
* Include Abstract Examine Class
*/
! require_once $_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php';
/**
Index: EditIP.Admin.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/EditIP.Admin.class.php,v
retrieving revision 1.12
retrieving revision 1.13
diff -C2 -d -r1.12 -r1.13
*** EditIP.Admin.class.php 23 May 2008 08:59:12 -0000 1.12
--- EditIP.Admin.class.php 21 Sep 2008 08:37:08 -0000 1.13
***************
*** 14,18 ****
*/
! if (strpos($_SERVER['PHP_SELF'], 'EditIP.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
--- 14,18 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'EditIP.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
Index: ProjectHoneyPot.Examine.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/ProjectHoneyPot.Examine.class.php,v
retrieving revision 1.3
retrieving revision 1.4
diff -C2 -d -r1.3 -r1.4
*** ProjectHoneyPot.Examine.class.php 2 Feb 2008 20:03:06 -0000 1.3
--- ProjectHoneyPot.Examine.class.php 21 Sep 2008 08:37:08 -0000 1.4
***************
*** 37,42 ****
// $Id$
! if (strpos ($_SERVER['PHP_SELF'], 'ProjectHoneyPot.Examine.class.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 37,42 ----
// $Id$
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'ProjectHoneyPot.Examine.class.php') !== false) {
! die('This file can not be used on its own!');
}
***************
*** 44,48 ****
* Include Abstract Examine Class
*/
! require_once($_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php');
define('HTTP_BL_SEARCH_ENGINE', 0);
--- 44,48 ----
* Include Abstract Examine Class
*/
! require_once $_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php';
define('HTTP_BL_SEARCH_ENGINE', 0);
Index: SLVwhitelist.Admin.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/SLVwhitelist.Admin.class.php,v
retrieving revision 1.7
retrieving revision 1.8
diff -C2 -d -r1.7 -r1.8
*** SLVwhitelist.Admin.class.php 23 May 2008 08:59:12 -0000 1.7
--- SLVwhitelist.Admin.class.php 21 Sep 2008 08:37:08 -0000 1.8
***************
*** 14,18 ****
*/
! if (strpos($_SERVER['PHP_SELF'], 'SLVwhitelist.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
--- 14,18 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'SLVwhitelist.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
Index: install_defaults.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/install_defaults.php,v
retrieving revision 1.5
retrieving revision 1.6
diff -C2 -d -r1.5 -r1.6
*** install_defaults.php 3 Jul 2008 18:00:53 -0000 1.5
--- install_defaults.php 21 Sep 2008 08:37:08 -0000 1.6
***************
*** 34,38 ****
// $Id$
! if (strpos($_SERVER['PHP_SELF'], 'install_defaults.php') !== false) {
die('This file can not be used on its own!');
}
--- 34,38 ----
// $Id$
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'install_defaults.php') !== false) {
die('This file can not be used on its own!');
}
Index: IPofUrl.Examine.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/IPofUrl.Examine.class.php,v
retrieving revision 1.5
retrieving revision 1.6
diff -C2 -d -r1.5 -r1.6
*** IPofUrl.Examine.class.php 25 Jun 2006 08:40:54 -0000 1.5
--- IPofUrl.Examine.class.php 21 Sep 2008 08:37:08 -0000 1.6
***************
*** 13,18 ****
*/
! if (strpos ($_SERVER['PHP_SELF'], 'IPofUrl.Examine.class.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 13,18 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'IPofUrl.Examine.class.php') !== false) {
! die('This file can not be used on its own!');
}
***************
*** 20,24 ****
* Include Abstract Examine Class
*/
! require_once($_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php');
/**
--- 20,24 ----
* Include Abstract Examine Class
*/
! require_once $_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php';
/**
Index: MailAdmin.Action.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/MailAdmin.Action.class.php,v
retrieving revision 1.14
retrieving revision 1.15
diff -C2 -d -r1.14 -r1.15
*** MailAdmin.Action.class.php 26 Jan 2008 17:17:41 -0000 1.14
--- MailAdmin.Action.class.php 21 Sep 2008 08:37:08 -0000 1.15
***************
*** 13,18 ****
*/
! if (strpos ($_SERVER['PHP_SELF'], 'MailAdmin.Action.class.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 13,18 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'MailAdmin.Action.class.php') !== false) {
! die('This file can not be used on its own!');
}
***************
*** 20,24 ****
* Include Abstract Action Class
*/
! require_once($_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php');
/**
--- 20,24 ----
* Include Abstract Action Class
*/
! require_once $_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php';
/**
Index: MassDelTrackback.Admin.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/MassDelTrackback.Admin.class.php,v
retrieving revision 1.10
retrieving revision 1.11
diff -C2 -d -r1.10 -r1.11
*** MassDelTrackback.Admin.class.php 23 May 2008 08:59:12 -0000 1.10
--- MassDelTrackback.Admin.class.php 21 Sep 2008 08:37:08 -0000 1.11
***************
*** 16,20 ****
*/
! if (strpos($_SERVER['PHP_SELF'], 'MassDelTrackback.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
--- 16,20 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'MassDelTrackback.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
Index: SLV.Examine.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/SLV.Examine.class.php,v
retrieving revision 1.1
retrieving revision 1.2
diff -C2 -d -r1.1 -r1.2
*** SLV.Examine.class.php 27 Aug 2006 09:30:19 -0000 1.1
--- SLV.Examine.class.php 21 Sep 2008 08:37:08 -0000 1.2
***************
*** 13,18 ****
*/
! if (strpos ($_SERVER['PHP_SELF'], 'SLV.Examine.class.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 13,18 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'SLV.Examine.class.php') !== false) {
! die('This file can not be used on its own!');
}
***************
*** 20,25 ****
* Include Base Classes
*/
! require_once ($_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php');
! require_once ($_CONF['path'] . 'plugins/spamx/' . 'SLVbase.class.php');
/**
--- 20,25 ----
* Include Base Classes
*/
! require_once $_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php';
! require_once $_CONF['path'] . 'plugins/spamx/' . 'SLVbase.class.php';
/**
Index: LogView.Admin.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/LogView.Admin.class.php,v
retrieving revision 1.10
retrieving revision 1.11
diff -C2 -d -r1.10 -r1.11
*** LogView.Admin.class.php 25 Nov 2007 06:56:05 -0000 1.10
--- LogView.Admin.class.php 21 Sep 2008 08:37:08 -0000 1.11
***************
*** 13,21 ****
*/
! if (strpos ($_SERVER['PHP_SELF'], 'LogView.Admin.class.php') !== false) {
! die ('This file can not be used on its own!');
}
! require_once($_CONF['path'] . 'plugins/spamx/BaseAdmin.class.php');
class LogView extends BaseAdmin {
--- 13,21 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'LogView.Admin.class.php') !== false) {
! die('This file can not be used on its own!');
}
! require_once $_CONF['path'] . 'plugins/spamx/BaseAdmin.class.php';
class LogView extends BaseAdmin {
Index: DeleteComment.Action.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/DeleteComment.Action.class.php,v
retrieving revision 1.6
retrieving revision 1.7
diff -C2 -d -r1.6 -r1.7
*** DeleteComment.Action.class.php 22 Aug 2006 17:57:54 -0000 1.6
--- DeleteComment.Action.class.php 21 Sep 2008 08:37:08 -0000 1.7
***************
*** 13,18 ****
*/
! if (strpos ($_SERVER['PHP_SELF'], 'DeleteComment.Action.class.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 13,18 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'DeleteComment.Action.class.php') !== false) {
! die('This file can not be used on its own!');
}
***************
*** 20,24 ****
* Include Abstract Action Class
*/
! require_once($_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php');
/**
--- 20,24 ----
* Include Abstract Action Class
*/
! require_once $_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php';
/**
Index: BlackList.Examine.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/BlackList.Examine.class.php,v
retrieving revision 1.12
retrieving revision 1.13
diff -C2 -d -r1.12 -r1.13
*** BlackList.Examine.class.php 10 Dec 2006 08:57:49 -0000 1.12
--- BlackList.Examine.class.php 21 Sep 2008 08:37:08 -0000 1.13
***************
*** 13,18 ****
*/
! if (strpos ($_SERVER['PHP_SELF'], 'BlackList.Examine.class.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 13,18 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'BlackList.Examine.class.php') !== false) {
! die('This file can not be used on its own!');
}
***************
*** 20,24 ****
* Include Abstract Examine Class
*/
! require_once($_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php');
/**
--- 20,24 ----
* Include Abstract Examine Class
*/
! require_once $_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php';
/**
Index: SLVreport.Action.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/SLVreport.Action.class.php,v
retrieving revision 1.1
retrieving revision 1.2
diff -C2 -d -r1.1 -r1.2
*** SLVreport.Action.class.php 27 Aug 2006 09:30:19 -0000 1.1
--- SLVreport.Action.class.php 21 Sep 2008 08:37:08 -0000 1.2
***************
*** 13,18 ****
*/
! if (strpos ($_SERVER['PHP_SELF'], 'SLVreport.Action.class.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 13,18 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'SLVreport.Action.class.php') !== false) {
! die('This file can not be used on its own!');
}
***************
*** 20,25 ****
* Include Base Classes
*/
! require_once ($_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php');
! require_once ($_CONF['path'] . 'plugins/spamx/' . 'SLVbase.class.php');
/**
--- 20,25 ----
* Include Base Classes
*/
! require_once $_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php';
! require_once $_CONF['path'] . 'plugins/spamx/' . 'SLVbase.class.php';
/**
Index: MassDelete.Admin.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/MassDelete.Admin.class.php,v
retrieving revision 1.21
retrieving revision 1.22
diff -C2 -d -r1.21 -r1.22
*** MassDelete.Admin.class.php 23 May 2008 08:59:12 -0000 1.21
--- MassDelete.Admin.class.php 21 Sep 2008 08:37:08 -0000 1.22
***************
*** 14,18 ****
*/
! if (strpos($_SERVER['PHP_SELF'], 'MassDelete.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
--- 14,18 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'MassDelete.Admin.class.php') !== false) {
die('This file can not be used on its own!');
}
Index: SLVbase.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/SLVbase.class.php,v
retrieving revision 1.6
retrieving revision 1.7
diff -C2 -d -r1.6 -r1.7
*** SLVbase.class.php 4 Feb 2007 22:09:29 -0000 1.6
--- SLVbase.class.php 21 Sep 2008 08:37:08 -0000 1.7
***************
*** 13,18 ****
*/
! if (strpos ($_SERVER['PHP_SELF'], 'SLVbase.class.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 13,18 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'SLVbase.class.php') !== false) {
! die('This file can not be used on its own!');
}
Index: MTBlackList.Examine.class.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/plugins/spamx/MTBlackList.Examine.class.php,v
retrieving revision 1.11
retrieving revision 1.12
diff -C2 -d -r1.11 -r1.12
*** MTBlackList.Examine.class.php 25 Jun 2006 08:40:54 -0000 1.11
--- MTBlackList.Examine.class.php 21 Sep 2008 08:37:08 -0000 1.12
***************
*** 17,22 ****
*/
! if (strpos ($_SERVER['PHP_SELF'], 'MTBlackList.Examine.class.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 17,22 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'MTBlackList.Examine.class.php') !== false) {
! die('This file can not be used on its own!');
}
***************
*** 24,28 ****
* Include Abstract Examine Class
*/
! require_once($_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php');
/**
--- 24,28 ----
* Include Abstract Examine Class
*/
! require_once $_CONF['path'] . 'plugins/spamx/' . 'BaseCommand.class.php';
/**
More information about the geeklog-cvs
mailing list