nginx 0day exploit for nginx + fastcgi PHP

tuurtnt nginx-forum at nginx.us
Wed Dec 14 23:26:34 UTC 2011


Hi guys,

just found this fix for this issue...


if ( $fastcgi_script_name ~ \..*\/.*php ) { 
return 403; 
}

Posted at Nginx Forum: http://forum.nginx.org/read.php?2,88845,220088#msg-220088



More information about the nginx mailing list