DedeBIZ
/
DedeV6
Watch 2
Star 0
Fork 0
Code Pull Requests 0 Releases 25 Activity
国内流行的内容管理系统(CMS)多端全媒体解决方案 https://www.dedebiz.com
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
194 Commits
3 Branches
85MB
Tree: b60deb4226
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'b60deb4226'
${ noResults }
DedeV6/src/dede/templets/sys_safetest.htm

95 lines
3.9KB
Raw Blame History 

  1. <!DOCTYPE html

  2.   PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

  3. <html xmlns="http://www.w3.org/1999/xhtml">

  4. 

  5. <head>

  6.   <meta http-equiv="Content-Type" content="text/html; charset=<?php echo $cfg_soft_lang; ?>">

  7.   <title>木马自检程序</title>

  8.   <link rel="stylesheet" href="../static/css/bootstrap.min.css">

  9.   <link href="../static/font-awesome/css/font-awesome.min.css" rel="stylesheet">

  10.   <link href="css/base.css" rel="stylesheet" type="text/css" />

  11.   <link rel="stylesheet" type="text/css" href="css/indexbody.css" />

  12.   <style type="text/css">

  13.     td {

  14.       padding-left: 8px;

  15.     }

  16.   </style>

  17.   <script language="javascript" src="../static/js/jquery.js"></script>

  18.   <script language='javascript' src='js/main.js'></script>

  19.   <script language="javascript" src="../static/js/dedeajax2.js"></script>

  20.   <script language='javascript'>

  21. 

  22.     function LoadCtTest() {

  23.       var filetype = $Obj('filetype').value;

  24.       var info = $Obj('info').value;

  25.       $Obj('loaddiv').style.display = 'block';

  26.       var myajax = new DedeAjax($DE('messagetd'));

  27.       myajax.SendGet2('sys_safetest.php?action=test&filetype=' + filetype + "&info=" + info);

  28.       $Obj('loaddiv').style.display = 'none';

  29.     }

  30. 

  31.     function LoadCtClear() {

  32.       $Obj('loaddiv').style.display = 'block';

  33.       var myajax = new DedeAjax($DE('messagetd'));

  34.       myajax.SendGet2('sys_safetest.php?action=clear');

  35.       $Obj('loaddiv').style.display = 'none';

  36.     }

  37. 

  38.   </script>

  39. </head>

  40. 

  41. <body leftmargin="8" topmargin="8" background='images/allbg.gif'>

  42. 

  43.   <div id='loaddiv' style='display:none'>

  44.     <p align='center' style='padding-top:200px'><img src='images/loadinglit.gif' /> 请稍后,正在操作中...</p>

  45.   </div>

  46. 

  47.   <div class="bodytitle mt-3">

  48.     <div class="bodytitleleft"></div>

  49.     <div class="bodytitletxt" style="padding-left:10px;">用户安全中心</div>

  50.   </div>

  51.   <?php echo $alter;?>

  52.   <table width="98%" border="0" cellpadding="1" cellspacing="1" align="center" class="table maintable"

  53.     style="background:#CFCFCF;">

  54.     <tr>

  55.       <td width="100%" height="24" colspan="2" bgcolor="#EDF9D5" background="images/tbg.gif" style="padding-left:10px;">

  56.         <b>木马自检程序</b>

  57.       </td>

  58.     </tr>

  59.     <tr>

  60.       <td height="73" colspan="2" bgcolor="#FFFFFF">

  61.         <strong>安全建议:</strong>

  62.         <br />

  63.         1、有条件的用户把中 data、templets、uploads、html、special、images、install目录设置为不允许执行脚本,其它目录禁止写入,系统将更安全;<br />

  64.         2、本检测程以开发模式为标准,如果您的网站目录包含其它系统,此检测程序可能会产生错误判断;<br />

  65.         3、检测程序会跳过对模板缓存目录的检测,为了安全起见,检测完成后建议清空模板缓存。

  66.       </td>

  67.     </tr>

  68.     <tr>

  69.       <td height="50" colspan="2" bgcolor="#FFFFFF">

  70.         <p>文件类型:

  71.           <input name="filetype" type="text" id="filetype" value="php|inc" style="width:420px" />

  72.           &nbsp;要检查的文件类型</p>

  73.         <p>代码特征:

  74.           <input name="info" type="text" id="info" value="eval|cmd|system|exec|_GET|_POST|_REQUEST|base64_decode" style="width:420px" />

  75.           &nbsp;特征代码</p>

  76.       </td>

  77.     </tr>

  78.     <tr>

  79.       <td height="50" colspan="2" bgcolor="#FFFFFF">

  80.         <button type="button" name="bt1" class="btn btn-secondary" onclick="LoadCtTest();">开始检测</button>

  81.         &nbsp;

  82.         <button type="button" name="bt2" class="btn btn-secondary" onclick="LoadCtClear();">清空模板缓存</button>

  83.       </td>

  84.     </tr>

  85.     <tr>

  86.       <td height="30" colspan="2" bgcolor="#F9FCEF">检测结果:(结果仅供参考,请务必查看源码后才删除非法文件)</td>

  87.     </tr>

  88.     <tr>

  89.       <td height="300" colspan="2" id="messagetd" valign="top" bgcolor="#FFFFFF">

  90.       </td>

  91.     </tr>

  92.   </table>

  93. </body>

  94. 

  95. </html>