{"id":3493,"date":"2014-05-04T14:50:24","date_gmt":"2014-05-04T14:50:24","guid":{"rendered":"http:\/\/tapchicntt.com\/?p=3493"},"modified":"2014-05-04T14:50:24","modified_gmt":"2014-05-04T14:50:24","slug":"wordpress-chan-cac-truy-van-nguy-hiem","status":"publish","type":"post","link":"https:\/\/tapchicntt.com\/wordpress-chan-cac-truy-van-nguy-hiem\/","title":{"rendered":"[WordPress] Ch\u1eb7n c\u00e1c truy v\u1ea5n nguy hi\u1ec3m"},"content":{"rendered":"<p>Th\u00f4ng th\u01b0\u1eddng c\u00e1c hacker c\u00f3 th\u1ec3 khai th\u00e1c l\u1ed7i SQL Injection b\u1eb1ng vi\u1ec7c tr\u1ef1c ti\u1ebfp nh\u1eadp c\u00e1c c\u00e2u l\u1ec7nh truy v\u1ea5n tr\u00ean URL c\u1ee7a website. H\u00e3y ch\u00e8n code d\u01b0\u1edbi \u0111\u00e2y v\u00e0o file <strong>functions.php<\/strong> \u0111\u1ec3 ng\u0103n ch\u1eb7n vi\u1ec7c n\u00e0y:<!--more--><\/p>\n<pre class=\"brush: php; title: ; notranslate\" title=\"\">\r\n\r\nglobal $user_ID; if($user_ID) {\r\n        if(!current_user_can('administrator')) {\r\n                if (strlen($_SERVER&#x5B;'REQUEST_URI']) &gt; 255 ||\r\n                        stripos($_SERVER&#x5B;'REQUEST_URI'], &quot;eval(&quot;) ||\r\n                        stripos($_SERVER&#x5B;'REQUEST_URI'], &quot;CONCAT&quot;) ||\r\n                        stripos($_SERVER&#x5B;'REQUEST_URI'], &quot;UNION+SELECT&quot;) ||\r\n                        stripos($_SERVER&#x5B;'REQUEST_URI'], &quot;base64&quot;)) {\r\n                                @header(&quot;HTTP\/1.1 414 Request-URI Too Long&quot;);\r\n                                @header(&quot;Status: 414 Request-URI Too Long&quot;);\r\n                                @header(&quot;Connection: Close&quot;);\r\n                                @exit;\r\n                }\r\n        }\r\n}\r\n\r\n<\/pre>\n<p>Nh\u01b0 v\u1eady, website c\u1ee7a c\u00e1c b\u1ea1n s\u1ebd \u0111\u01b0\u1ee3c an to\u00e0n v\u1edbi nh\u1eefng c\u00e2u truy v\u1ea5n SQL.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Th\u00f4ng th\u01b0\u1eddng c\u00e1c hacker c\u00f3 th\u1ec3 khai th\u00e1c l\u1ed7i SQL Injection b\u1eb1ng vi\u1ec7c tr\u1ef1c ti\u1ebfp nh\u1eadp c\u00e1c c\u00e2u l\u1ec7nh truy [&hellip;]<\/p>\n","protected":false},"author":6,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[143],"tags":[],"class_list":["post-3493","post","type-post","status-publish","format-standard","hentry","category-thu-thuat-wordpress"],"views":432,"_links":{"self":[{"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/posts\/3493","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/comments?post=3493"}],"version-history":[{"count":0,"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/posts\/3493\/revisions"}],"wp:attachment":[{"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/media?parent=3493"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/categories?post=3493"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/tapchicntt.com\/rest-api\/wp\/v2\/tags?post=3493"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}