chyb\u011bj\u00edc\u00ed kontrolu<\/a> typu nahr\u00e1van\u00e9ho souboru v Divi Builderu. <\/p>\n\n\n\nStejn\u011b jako u p\u0159edchoz\u00ed zranitelnosti, m\u016f\u017ee b\u00fdt i tato zneu\u017eita pouze pokud m\u00e1 u\u017eivatel pr\u00e1va edit_post. Tedy ka\u017ed\u00fd u\u017eivatel s takov\u00fdm pr\u00e1vem v\u00e1m m\u016f\u017ee hacknout web. <\/p>\n\n\n\n
Probl\u00e9m je v tom, \u017ee p\u0159i importu json souboru do builderu, sice doch\u00e1z\u00ed ke kontrole souboru na stran\u011b klienta, ale na stran\u011b serveru ji\u017e nedoch\u00e1z\u00ed k ov\u011b\u0159en\u00ed toho, \u017ee jde o json. <\/p>\n\n\n\n
Jak je vid\u011bt, p\u0159i pou\u017eit\u00ed funkce wp_handle_upload je vypnut\u00e9 ov\u011b\u0159en\u00ed typu souboru:<\/p>\n\n\n\n
$handle_file<\/code> = \"wp_handle_{$file_context}\";<\/code>\n$upload<\/code> = $handle_file( $_FILES['file'], array(<\/code>\n'test_size'<\/code> => false,<\/code>\n'test_type'<\/code> => false,<\/code>\n'test_form'<\/code> => false,<\/code>\n) );<\/code><\/pre>\n\n\n\nDivi builder si p\u0159edpokl\u00e1dan\u00fd json ulo\u017e\u00ed jako do\u010dasn\u00fd soubor a p\u0159i jeho zpracov\u00e1n\u00ed dojde k chyb\u011b, proto\u017ee soubor nem\u00e1 odpov\u00eddaj\u00edc\u00ed form\u00e1t. <\/p>\n\n\n\n
Proto\u017ee k odstran\u011bn\u00ed do\u010dasn\u00e9ho souboru doch\u00e1z\u00ed a\u017e po zpracov\u00e1n\u00ed jsonu, tak v p\u0159\u00edpad\u011b chyby, z\u016fstane soubor ulo\u017een v adres\u00e1\u0159i. <\/p>\n\n\n\n
\u00dato\u010dn\u00edk tak m\u016f\u017ee jednodu\u0161e nahr\u00e1t spustiteln\u00fd soubor do instalace WordPressu. <\/p>\n\n\n\n
Chyba byla nahl\u00e1\u0161ena 23.7. 2020 a v\u010dera 3.8.2020 byl vyd\u00e1n patch s opravou. <\/p>\n\n\n\n
Pokud spad\u00e1te do skupiny ohro\u017een\u00fdch web\u016f, doporu\u010duji neprodlen\u011b aktualizovat. <\/p>\n\n\n\n
<\/p>\n","protected":false},"excerpt":{"rendered":"
T\u00fdm WordFence Security objevil zranitelnost v \u0161ablon\u00e1ch Divi a Extra, kter\u00e1 ohro\u017euje p\u0159e 700 tis\u00edc web\u016f. Nen\u00ed to tak dlouho, co se objevil probl\u00e9m s pluginem All in SEO Pack a ji\u017e je na sv\u011bt\u011b dal\u0161\u00ed podobn\u00fd probl\u00e9m. Tentokr\u00e1t se jedn\u00e1 o chyb\u011bj\u00edc\u00ed kontrolu typu nahr\u00e1van\u00e9ho souboru v Divi Builderu. Stejn\u011b jako u p\u0159edchoz\u00ed zranitelnosti,<\/p>\n","protected":false},"author":1,"featured_media":9472,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[],"class_list":["post-5726","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-bezpecnost-wordpressu"],"_links":{"self":[{"href":"https:\/\/affinite.io\/cs\/wp-json\/wp\/v2\/posts\/5726"}],"collection":[{"href":"https:\/\/affinite.io\/cs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/affinite.io\/cs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/affinite.io\/cs\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/affinite.io\/cs\/wp-json\/wp\/v2\/comments?post=5726"}],"version-history":[{"count":0,"href":"https:\/\/affinite.io\/cs\/wp-json\/wp\/v2\/posts\/5726\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/affinite.io\/cs\/wp-json\/wp\/v2\/media\/9472"}],"wp:attachment":[{"href":"https:\/\/affinite.io\/cs\/wp-json\/wp\/v2\/media?parent=5726"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/affinite.io\/cs\/wp-json\/wp\/v2\/categories?post=5726"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/affinite.io\/cs\/wp-json\/wp\/v2\/tags?post=5726"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}