joomla/jedchecker
33
2
Fork 0
mirror of https://github.com/joomla-extensions/jedchecker.git synced 2024-12-02 18:08:21 +00:00
Code Issues Releases Activity

Merge pull request #77 from dryabov/patch-11

Browse Source
This commit is contained in:
Llewellyn van der Merwe 2021-01-27 15:15:04 +02:00
commit f22a82d6cf
Signed by: Llewellyn
GPG Key ID: EFC0C720A240551C
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
administrator/components/com_jedchecker/libraries/rules/jamss.php
View File

@ -188,8 +188,8 @@ class JedcheckerRulesJamss extends JEDcheckerRule
'Probably malicious PHP script that "calls home"', 'Probably malicious PHP script that "calls home"',
'16', '16',
'Detected script variations often used to inform the attackers about found vulnerable website.',), 'Detected script variations often used to inform the attackers about found vulnerable website.',),
array('(?:(?:eval|gzuncompress|gzinflate|base64_decode|str_rot13|strrev|strtr|preg_replace|rawurldecode|' . array('(?:(?:eval|gzuncompress|gzinflate|base64_decode|str_rot13|strrev|strtr|rawurldecode|' .
'str_replace|assert|unpack|urldecode)[\s/\*\w\W\(]*){2,}', 'assert|unpack|urldecode)[\s/\*\w\W\(]*){2,}',
'PHP: multiple encoded, most probably obfuscated code found', 'PHP: multiple encoded, most probably obfuscated code found',
'17', '17',
'This pattern could be used in highly encoded, malicious code hidden under a loop of code obfuscation function ' . 'This pattern could be used in highly encoded, malicious code hidden under a loop of code obfuscation function ' .