Deny jce hacking attempt

Filter jce hacking attempt with following method.

/index.php option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&method=form&cid=20&6bc427c8a7981f4fe1f5ac65c1246b5f=cf6dd3cf1923c950586d0dd595c8e20b 80 - xxx.xxx.xxx.xxx BOT/0.1+(BOT+for+JCE)


Add below code in the hosting space web.config file inside the system.webserver section.It will deny any request with com_jce & plugin=imgmanager

<security>
<requestFiltering>
<filteringRules>
<filteringRule name="blockjce" scanQueryString="true">
<appliesTo>
<add fileExtension=".php" />
</appliesTo>
<denyStrings>
<add string="com_jce" />
<add string="plugin=imgmanager" />
</denyStrings>
</filteringRule>
</filteringRules>
</requestFiltering>
</security>

  • 46 Корисниците го најдоа ова како корисно
Дали Ви помогна овој одговор?

Понудени резултати

Web Application Firewall (WAF)

WAF stands for Web Application Firewall, it is a real-time protection installed on the server to...

How to protect my CMS from hacks?

Content Management System or better known as CMS such as WordPress, Joomla and etc. are commonly...

Full scan of computer using Malwarebytes

If you suspect your password was stolen by viruses/malware/spyware infected in your computer,...

Firefox: This address is restricted

Error Message: This address is restrictedThis address uses a network port which is normally used...

Enable Two-Factor Authentication (2FA) in Yeahhost client account

Enabling Two-Factor Authentication (2FA) in Yeahhost client account requires Google Authenticator...