Deny jce hacking attempt

Filter jce hacking attempt with following method.

/index.php option=com_jce&task=plugin&plugin=imgmanager&file=imgmanager&method=form&cid=20&6bc427c8a7981f4fe1f5ac65c1246b5f=cf6dd3cf1923c950586d0dd595c8e20b 80 - xxx.xxx.xxx.xxx BOT/0.1+(BOT+for+JCE)


Add below code in the hosting space web.config file inside the system.webserver section.It will deny any request with com_jce & plugin=imgmanager

<security>
<requestFiltering>
<filteringRules>
<filteringRule name="blockjce" scanQueryString="true">
<appliesTo>
<add fileExtension=".php" />
</appliesTo>
<denyStrings>
<add string="com_jce" />
<add string="plugin=imgmanager" />
</denyStrings>
</filteringRule>
</filteringRules>
</requestFiltering>
</security>

  • 12 Utenti hanno trovato utile questa risposta
Hai trovato utile questa risposta?

Articoli Correlati

Web Application Firewall (WAF)

WAF stands for Web Application Firewall, it is a real-time protection installed on the server to...

Ransomware Infection

WHAT IS RANSONWARERansomware is a type of virus sent by hackers to encrypt your files and...

Full scan of computer using Malwarebytes

If you suspect your password was stolen by viruses/malware/spyware infected in your computer,...

Firefox: This address is restricted

Error Message: This address is restrictedThis address uses a network port which is normally used...

How to protect my CMS from hacks?

Content Management System or better known as CMS such as WordPress, Joomla and etc. are commonly...