DedeBIZ
/
DedeV6
Observar 2
Favorito 0
Fork 0
Código Pull requests 0 Versões 31 Atividade
国内流行的内容管理系统(CMS)多端全媒体解决方案 https://www.dedebiz.com
Você não pode selecionar mais de 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
2619 Commits
3 Branches
93MB
Tag: cbe122b94c
Branches Tags
${ item.name }
Criar branch ${ searchTerm }
de cbe122b94c
${ noResults }
DedeV6/src/admin/templets/sys_safetest.htm

81 linhas
3.0KB
Original Anotar Histórico 

  1. <!DOCTYPE html>

  2. <html>

  3. 	<head>

  4. 		<meta charset="utf-8">

  5. 		<meta name="viewport" content="width=device-width,initial-scale=1,shrink-to-fit=no">

  6. 		<title>文件扫描工具</title>

  7. 		<link rel="stylesheet" href="/static/web/css/font-awesome.min.css">

  8. 		<link rel="stylesheet" href="/static/web/css/bootstrap.min.css">

  9. 		<link rel="stylesheet" href="/static/web/css/admin.css">

  10. 		<script src="/static/web/js/jquery.min.js"></script>

  11. 		<script src="/static/web/js/webajax.js"></script>

  12. 		<script src="/static/web/js/admin.main.js"></script>

  13. 	</head>

  14. 	<body>

  15. 		<ol class="breadcrumb">

  16. 			<li class="breadcrumb-item"><a href="index_body.php">后台面板</a></li>

  17. 			<li class="breadcrumb-item active">文件扫描工具</li>

  18. 		</ol>

  19. 		<div class="card shadow-sm mb-3">

  20. 			<div class="card-header">文件扫描工具</div>

  21. 			<div class="card-body">

  22. 				<div class="alert alert-info">

  23. 					<ul>

  24. 						<li>检测结果:结果仅供参考,请务必查看源码后才删除非法文件</li>

  25. 						<li>安全建议:1、有条件的会员把data、system、theme修改为不可对外浏览,static、a目录设置为不允许执行脚本,其它目录禁止写入,系统更安全;2、本检测程以开发模式为标准,如果网站目录包含其它系统,此检测程序会产生错误判断;3、检测程序会跳过对模板缓存目录的检测,为了安全起见,检测完成后建议清空模板缓存</li>

  26. 					</ul>

  27. 				</div>

  28. 				<?php echo $alter;?>

  29. 				<div class="table-responsive">

  30. 					<table class="table table-borderless">

  31. 						<tbody>

  32. 							<tr>

  33. 								<td>

  34. 									<label>文件类型:<input type="text" name="filetype" id="filetype" value="php|inc" class="admin-input-lg"></label>

  35. 									<label>代码特征:<input type="text" name="info" id="info" value="eval|cmd|system|exec|_GET|_POST|_REQUEST|base64_decode" class="admin-input-lg"></label>

  36. 								</td>

  37. 							</tr>

  38. 							<tr>

  39. 								<td align="center">

  40. 									<a href="javascript:LoadCtTest();" class="btn btn-success btn-sm">开始执行</a>

  41. 									<a href="javascript:LoadCtClear();" class="btn btn-success btn-sm">清空模板缓存</a>

  42. 								</td>

  43. 							</tr>

  44. 							<tr>

  45. 								<td id="messagetd"></td>

  46. 							</tr>

  47. 						</tbody>

  48. 					</table>

  49. 				</div>

  50. 			</div>

  51. 		</div>

  52. 		<script>

  53. 			function LoadCtTest() {

  54. 				var filetype = $Obj('filetype').value;

  55. 				var info = $Obj('info').value;

  56. 				fetch('sys_safetest.php?action=test&filetype=' + filetype + "&info=" + info).then(resp => {

  57. 					if (resp.ok) {

  58. 					   return resp.text()

  59. 					}

  60. 					throw new Error('系统错误,无法获取数据');

  61. 				}).then((d) => {

  62. 					$DE('messagetd').innerHTML = d;

  63. 				}).catch((error) => {

  64. 					console.log(error);

  65. 				});

  66. 			}

  67. 			function LoadCtClear() {

  68. 				fetch('sys_safetest.php?action=clear').then(resp => {

  69. 					if (resp.ok) {

  70. 						return resp.text()

  71. 					}

  72. 					throw new Error('系统错误,无法获取数据');

  73. 				}).then((d) => {

  74. 					$DE('messagetd').innerHTML = d;

  75. 				}).catch((error) => {

  76. 					$DE('messagetd').innerHTML = errMsg;

  77. 				});

  78. 			}

  79. 		</script>

  80. 	</body>

  81. </html>