Halo Guest, pastikan Anda selalu menaati peraturan forum sebelum mengirimkan post atau thread baru.

[SHARE] Celah Bug Fatal Error : Call to undefined function php di Wordpress 2.92

Discussion in 'Wordpress' started by h1g4m, May 12, 2010.

Page 1 of 2

h1g4m Super Hero

Joined:

Mar 18, 2009

Messages:

1,429

Likes Received:

78

Location:

Serang - banten
Bermula dari muatnya posting Celah Wordpress ternyata masih banyak Bug yg terdapat di Wordpress

ane coba share listnya gan :

- /public_html/

* wp-settings.php

- /wp-admin/

* admin-functions.php

* menu.php

* menu-header.php

* options-head.php

* upgrade-functions.php

- /wp-admin/import/

* Semua file php error

- /wp-admin/includes/

* admin.php

* class-ftp-pure.php

* class-ftp-sockets.php

* class-ftp.php

* class-wp-filesystem-direct.php

* class-wp-filesystem-ftpext.php

* class-wp-filesystem-ftpsockets.php

* class-wp-filesystem-ssh2.php

* comment.php

* continents-cities.php

* file.php

* media.php

* misc.php

* plugin-install.php

* plugin.php

* template.php

* theme-install.php

* update.php

* upgrade.php

* user.php

- /wp-content/plugins/

* hello.php

- /wp-content/plugins/akismet

* akismet.php

- /wp-content/themes/classic/

* All file php error

- /wp-content/themes/default/

* All file php error

- /wp-includes/

* canonical.php

* class-feed.php

* class.wp-scripts.php

* class.wp-styles.php

* comment-template.php

* default-embeds.php

* default-filters.php

* default-widgets.php

* feed-atom-comments.php

* feed-atom.php

* feed-rdf.php

* feed-rss.php

* feed-rss2-comments.php

* feed-rss2.php

* general-template.php

* kses.php

* media.php

* post.php

* registration-functions.php

* rss-functions.php

* rss.php

* script-loader.php

* shortcodes.php

* taxonomy.php

* template-loader.php

* theme.php

* update.php

* vars.php

* wp-db.php

* user.php

- /wp-includes/js/tinymce/langs/

* wp-langs.php

yang lebih parahnya munculnya error bisa dimanfaatkan sama penyusup untuk mem-brute force password cpanel dikarenakan username cpanel kita udah ketauan Oleh karena itu, usahakan menggunakan password yang benar – benar kuat, menggunakan kombinasi huruf kecil huruf besar, angka serta karakter khusus.

Pencegahan bisa Memakai Plugin WP Security Scan (hxtp://wordpress.org/extend/plugins/wp-security-scan/).

Dengan plugin ini ente bisa mengedintifikasi celah – celah keamanan jika dijumpai pada blog. Selain itu kita akan diberitahu cara memperbaikinya. Plugins WP Security Scan juga akan menawarkan untuk penggantian nama tables prefixes, menguji kekuatan password, menghapus account admin dan memverifikasi directory blog agar memiliki keamanan yang baik.

Nanti Ane coba sortir Plugin -plugin yg sekiranya bisa untuk mencegah Penyusup (ane gak bilang hacker loh !)

To be Continued...

Pencegahan

Silahkan tambahin script dibawah untuk di masukkan di baris kedua setelah <?php maka akan menampilkan blank page

Code:

error_reporting(0);

untuk file http://blablabla.crot/wp-settings.php report error harus dimasukkan di baris yang error, yaitu pada baris ke 265, masukkan error_reporting(0); setelah else {
Last edited: May 12, 2010

h1g4m, May 12, 2010

#1
teguhaditya Super Hero

Joined:

Jan 23, 2008

Messages:

7,503

Likes Received:

1,418

Location:

_ ▂ ▃ ▅ ▆ █

sip.. ane olah TKP dulu...
ntar kalau nemu juga di tambahin..

teguhaditya, May 12, 2010

#2
neptunose Super Hero

Joined:

May 9, 2009

Messages:

1,080

Likes Received:

123

Location:

bandung

pasti banyak kerjaan nih oM !!!!!!!

neptunose, May 12, 2010

#3
sai05 Super Hero

Joined:

Feb 19, 2010

Messages:

945

Likes Received:

51

Location:

rudeyz.com

gelar tiker mode on .. Bokmark "reading" on

di tunggu janji nya

sai05, May 12, 2010

#4
saw_troy Super Hero

Joined:

Nov 5, 2009

Messages:

2,017

Likes Received:

23

Location:

IndoPreneur.com

ngikut nyimak ah..
dtunggu episode selanjutnya

saw_troy, May 12, 2010

#5
leniden Super Hero

Joined:

Mar 22, 2008

Messages:

2,403

Likes Received:

410

Location:

Palembang

Nggak mungkin jadi kita ganti satu persatu... Tunggu dulu om r3yr3 nih gimana seharusnya bertindak. TS.. Great Share

leniden, May 12, 2010

#6
taufandilog Super Hero

Joined:

Dec 28, 2009

Messages:

1,356

Likes Received:

16

Location:

Semarang

mantap nih....nongkrong dolo ahh nunggu update berita

taufandilog, May 12, 2010

#7
cah koplo Super Hero

Joined:

Feb 2, 2010

Messages:

812

Likes Received:

3

Location:

di temani secangkir kopi

mantap gan, jadi kudu nongkrongin terus nih

cah koplo, May 12, 2010

#8
devine Hero

Joined:

May 8, 2010

Messages:

608

Likes Received:

25

seremmmmm banget nih.... sampe merinding....sebanyak itu bugs-nya...

devine, May 12, 2010

#9
cahngalasz Super Hero

Joined:

Sep 5, 2009

Messages:

2,013

Likes Received:

26

Location:

Klaten, Jawa Tengah, Indonesia, Indonesia

adoh..banyak banget

cahngalasz, May 12, 2010

#10
leniden Super Hero

Joined:

Mar 22, 2008

Messages:

2,403

Likes Received:

410

Location:

Palembang

Sekarang ada nggak cara nutup bugnya secara global??? Ane juga serem ngelihatnya

leniden, May 12, 2010

#11
penampungan Hero

Joined:

May 4, 2010

Messages:

585

Likes Received:

30

Location:

?????????

menunggu kelanjutannya .
ngelonjor dulua ah..

penampungan, May 12, 2010

#12
indrajid Super Hero

Joined:

Oct 16, 2007

Messages:

3,964

Likes Received:

82

Location:

Sembada - Berirama

ayo2 siapa yang mau ngilangin bugs2 wordpress 2.9.2 jadi wordprezz biar kita download dan reinstall barang gratisan jadi serasa war*z

indrajid, May 12, 2010

#13
cheez Ads.id Pro

Joined:

Jan 8, 2010

Messages:

421

Likes Received:

4

Location:

Djogja

Whusss,,, banyak amaaatt bug-nya.. benerin atu2 ni..

cheez, May 12, 2010

#14
cahngalasz Super Hero

Joined:

Sep 5, 2009

Messages:

2,013

Likes Received:

26

Location:

Klaten, Jawa Tengah, Indonesia, Indonesia

_http://wordpress.com/wp-includes/wp-db.php
Hasilnya blank pagekirain eror juga

cahngalasz, May 12, 2010

#15
avianto Super Hero

Joined:

Oct 24, 2009

Messages:

3,112

Likes Received:

467

parah dah...

avianto, May 12, 2010

#16
indrajid Super Hero

Joined:

Oct 16, 2007

Messages:

3,964

Likes Received:

82

Location:

Sembada - Berirama

h++p://www.mattcutts.com/blog/wp-includes/wp-db.php

dia dodol juga

indrajid, May 12, 2010

#17
cahngalasz Super Hero

Joined:

Sep 5, 2009

Messages:

2,013

Likes Received:

26

Location:

Klaten, Jawa Tengah, Indonesia, Indonesia

Ane jadi malas mau benerin,coz banyak banget semoga ga ada yang iseng

cahngalasz, May 12, 2010

#18
richirich Super Hero

Joined:

May 4, 2010

Messages:

850

Likes Received:

46

cahngalasz said: ↑

_http://wordpress.com/wp-includes/wp-db.php
Hasilnya blank pagekirain eror juga
Click to expand...

Berarti wp rada 'curang' yak, ngasih gratisan yg nggak aman. yg aman dipake sendiri.
tapi yach mau dibilang apa, namanya juga gratisan. padahal tadinya saya pikir wp keamanannya sudah tingkat tinggi karena sudah dipakai masal sama banyak orang dari segala penjuru mata angin.

richirich, May 12, 2010

#19
azunna Super Hero

Joined:

Nov 28, 2008

Messages:

1,526

Likes Received:

364

Ane ngecek yang ini, yang punya adalah anggota wordpress developer team

_http://wpengineer.com/wp-includes/wp-db.php

hasilnya page not found, sama kayak siggy ane

_http://spicyvisit.com/wp-includes/wp-db.php

yang ini juga sama nih

_http://wordpress.org/wp-includes/wp-db.php

azunna, May 12, 2010

#20

(You must log in or sign up to reply here.)

Page 1 of 2

Share This Page