XMLRPC Wordpress Attack

Queston: What is XMLRPC?
XML-RPC is one of the protocols that use XML for messages between two server. It is used to "Remote Procedure Calls" using XML.


Queston: Question: What is JSON-RPC?
JSON-RPC is one of the protocols that use JSON for messages between two server.
It is used to "Remote Procedure Calls" using JSON.


Queston: What is xmlrpc in wordpress?
WordPress uses an XML-RPC interface.
XML-RPC protocol is used to post entries.


Question: How to protect your website from xmlrpc attack?
Add following code in bottom of .htaccess file in root folder.

<Files 'xmlrpc.php'>
Order Allow,Deny
deny from all
</files>

Question: How to stop abusing XML-RPC file?
Open functions.php file in your add theme and following code.

add_filter( 'xmlrpc_methods', function( $methods ) {
         unset( $methods['pingback.ping'] );
            return $methods;
      } ); 

Best Related Posts are Following:

1. Wordpress insert record into table and get last insert Id.
2. Wordpress Interview Questions and Answers for experienced.
3. How do I get wordpress global variable and functions in custom file [SOLVED].
4. How to send Email in wordpress.
5. How to change the author of a post in Wordpress.
6. How can delete a user without deleting the post and comments in wordpress?.
7. Wordpress redirect https to http with htaccess [SOLVED].
8. Wordpress Website title repeated two times in browser header [SOLVED].
9. Wordpress Interview Questions and Answers.

How can I read request-headers in PHP

$headers = apache_request_headers();
print_r($headers);

Following are the Response of apache_request_headers()

Question: What is apache_request_headers()?
This function fetch all HTTP request headers.


Question: What format it return when success?
An associative array of all the HTTP headers in the current request.


Question: What happen when request failed?
It return FALSE when failed.


Question: Is it availble in all PHP Version?
No, It works only with >= PHP 5.4.


Question: How can I get header values less than 5.4 version

function getRequestHeadersCustomFunction() {
    $headers = array();
    foreach($_SERVER as $key => $value) {
        if (substr($key, 0, 5) <> 'HTTP_') {
            continue;
        }
        $headerKey = str_replace(' ', '-', ucwords(str_replace('_', ' ', strtolower(substr($key, 5)))));
        $headers[$headerKey] = $value;
    }
    return $headers;
}
print_r(getRequestHeadersCustomFunction());

Best Related Posts are Following:

1. How can I prevent SQL-injection in PHP?.
2. What is Best method for sanitizing user input with PHP?.
3. Difference between Notice and warning and fatal error.
4. How can I prevent SQL-injection in PHP [SOLVED].
5. PHP Register Globals.
6. PHP Sessions and Cookie and Security.
7. Free Boost Web Application By 20% in Simple Steps.
8. PHP Check Mime Type of File - Return Information About A File.
9. Crontab Interview Questions and Answers.
10. Improve Ajax Performance.
11. PHP Captcha Code Example Code Snippets.
12. PHP - Secure Ajax Call from Hackers - Example.
13. htaccess code snippets example.
14. Manage Cron Job with PHP - SSH2 Connection.
15. Shared Server Security Risk open_basedir disable_functions disable_classes.
16. Spoofed Forms - Stop Spoofed Form Submissions.
17. Session Fixation.
18. Session Hijacking.
19. openssl private encrypt.
20. Cross Site Request Forgery.
21. SQL Injection Attack - PHP & MySQL.
22. Cross-Site Scripting - cross site scripting examples.
23. PHP INI settings.

How can I prevent SQL-injection in PHP?

Question: What is SQL Injection?
SQL injection is a code injection technique, which is used to attack on database driven applications. In this malicious SQL statements are inserted into an database query.


Question: How attackers attack on website with SQL Injection?
With use SQL Injection, attacker/hackers attack on web application's table/database.

For Example, Lets have a Web login-form where visitor enter the username and password to login in system.
Attacker use the special characters (i.e '"!@#$%^&*()_+)  in Web login-form, to attack the websites


What can attackers do with SQL Injection?
Below are couples of ways an attacker can harm our website.

1. After submit the form, these special character mix the query and break the query, due to this an page will be crash. In this case attacker may able to see the queryies printed in browser(If debug mode is not off).
2. They may use combination of special-characters due to which they may able to login in our system without having valid login.
3. They may able to see list of users in our database
4. They may delete record or table

How we can prevent with SQL Injection
We must filter data entered by user before saving in database OR using in SQL query.
If you are able to escaping the string, then you are able to prevent your website from SQL attack.

Following are few different ways to prevent SQL Injection in PHP, Use any of below:
Use a PHP Function For PHP 5.4

$safeData = mysql_real_escape_string($_POST["user-input"]);
mysql_query("INSERT INTO table (column) VALUES ('" . $safeData . "')");
//If you using PHP >5.5 Use MYSQL as mysql_real_escape_string is deprecated in PHP5.5

Use MySQLI (New version of MySQL)

$mysqli = new mysqli("server", "username", "password", "database_name");
$unsafeData = $_POST["user-input"];
$stmt = $mysqli->prepare("INSERT INTO table (column) VALUES (?)");
$stmt->bind_param("s", $unsafeData;
$stmt->execute();
$stmt->close();
$mysqli->close();

Use PDO to connect database

$stmt = $pdo->prepare('SELECT * FROM users WHERE name = :name');
$unsafeData = $_POST["user-input"];
$stmt->execute(array('name' => $unsafeData));

Following are SQL Vulnerable string

123' or '1  
123' or '1#
123' or 1 union select 1,database(), version()#
123' or 1 union select id, password,email from users#
123' or 1 union select id, password,email from users into outfile '/store-in-db.txt'#

Best Related Posts are Following:

1. AES Encryption and Decryption in PHP See example.
2. XMLRPC Wordpress Attack.
3. How can I read request-headers in PHP.
4. How can I prevent SQL-injection in PHP?.
5. Shared Server Security Risk open_basedir disable_functions disable_classes.
6. What is Best method for sanitizing user input with PHP?.
7. Difference between Notice and warning and fatal error.
8. How can I prevent SQL-injection in PHP [SOLVED].
9. PHP Register Globals.
10. PHP Sessions and Cookie and Security.
11. PHP Check Mime Type of File - Return Information About A File.
12. Improve Ajax Performance.
13. PHP Captcha Code Example Code Snippets.
14. PHP - Secure Ajax Call from Hackers - Example.
15. htaccess code snippets example.
16. Manage Cron Job with PHP - SSH2 Connection.
17. Spoofed Forms - Stop Spoofed Form Submissions.
18. Session Fixation.
19. Session Hijacking.
20. openssl private encrypt.
21. Cross Site Request Forgery.
22. SQL Injection Attack - PHP & MySQL.
23. Cross-Site Scripting - cross site scripting examples.
24. PHP INI settings.

Shared Server Security Risk open_basedir disable_functions disable_classes

There are a variety of security issues that arise when using shared hosting solutions. There are three php.ini directives that remain important in a shared hosting

open_basedir : The open_basedir directive provides the ability to limit the files that PHP can open

to a specified directory tree. When PHP tries to open a file with, for example, fopen()

or include, it checks the the location of the file. If it exists within the directory tree

specified by open_basedir, then it will succeed; otherwise, it will fail to open the file.

disable_functions :  You can disable function like exec, passthru, shell_exec, system etc for security purpose.

disable_classes : You can disable class like DirectoryIterator, Directory for security purpose.

You may set the open_basedir directive in php.ini OR on a per-virtual-host basis in httpd.conf. In the following httpd.conf virtual host example, PHP scripts may only open files located in the /home/user/www and /usr/local/lib/php directories.

<VirtualHost *:80>
    DocumentRoot 'C:/wamp/www/zf1_11/public_html'
    ServerName zf11.localhost
    <Directory 'C:/wamp/www/zf1_11/public_html'>
        AllowOverride All
        Order allow,deny
        Allow from all
    </Directory>
</VirtualHost>

Best Related Posts are Following:

1. XMLRPC Wordpress Attack.
2. How can I read request-headers in PHP.
3. How can I prevent SQL-injection in PHP?.
4. What is Best method for sanitizing user input with PHP?.
5. Difference between Notice and warning and fatal error.
6. How can I prevent SQL-injection in PHP [SOLVED].
7. PHP Register Globals.
8. PHP Sessions and Cookie and Security.
9. PHP Check Mime Type of File - Return Information About A File.
10. Improve Ajax Performance.
11. PHP Captcha Code Example Code Snippets.
12. PHP - Secure Ajax Call from Hackers - Example.
13. htaccess code snippets example.
14. Manage Cron Job with PHP - SSH2 Connection.
15. Shared Server Security Risk open_basedir disable_functions disable_classes.
16. Spoofed Forms - Stop Spoofed Form Submissions.
17. Session Fixation.
18. Session Hijacking.
19. openssl private encrypt.
20. Cross Site Request Forgery.
21. SQL Injection Attack - PHP & MySQL.
22. Cross-Site Scripting - cross site scripting examples.
23. PHP INI settings.

What is Best method for sanitizing user input with PHP?

Sanitize user-input when using in Mysql Query.
You can use real_escape_string of mysqli.
For Example:

$mysqliObj = new mysqli("localhost", "root", "", "mydb");
$city = $mysqliObj->real_escape_string($_POST['city']);
if ($mysqli->query("INSERT into myCity (Name) VALUES ('$city')")) {
    printf("%d Row inserted.\n", $mysqli->affected_rows);
}

Sanitize user-input  while insert in database and displaying in Browser.
You can use htmlentities and html_entity_decode.
For Example:

echo htmlentities($data['description']);//at the time of insert in database 
echo html_entity_decode($data['description']); //at the time of display in browser from database

Sanitize user-input when using in Command Prompt.
You can use escapeshellarg.
For Example:

system('ls '.escapeshellarg($data['dir']));

Best Related Posts are Following:

1. What is Best method for sanitizing user input with PHP?
2. Difference between Notice and warning and fatal error
3. How can I prevent SQL-injection in PHP [SOLVED]
4. PHP Register Globals
5. PHP Sessions and Cookie and Security
6. Free Boost Web Application By 20% in Simple Steps
7. PHP Check Mime Type of File - Return Information About A File
8. Crontab Interview Questions and Answers
9. Improve Ajax Performance
10. PHP Captcha Code Example Code Snippets
11. PHP - Secure Ajax Call from Hackers - Example
12. htaccess code snippets example
13. Manage Cron Job with PHP - SSH2 Connection
14. Shared Server Security Risk open_basedir disable_functions disable_classes
15. Spoofed Forms - Stop Spoofed Form Submissions
16. Session Fixation
17. Session Hijacking
18. openssl private encrypt
19. Cross Site Request Forgery
20. SQL Injection Attack - PHP & MySQL
21. Cross-Site Scripting
22. PHP INI settings