ngx_lua_waf/wafconf/post

select.+(from|limit)
(?:(union(.*?)select))
having|rongjitest
sleep\((\s*)(\d*)(\s*)\)
benchmark\((.*)\,(.*)\)
base64_decode\(
(?:from\W+information_schema\W)
(?:(?:current_)user|database|schema|connection_id)\s*\(
(?:etc\/\W*passwd)
into(\s+)+(?:dump|out)file\s*
group\s+by.+\(
xwork.MethodAccessor
(?:define|eval|file_get_contents|include|require|require_once|shell_exec|phpinfo|system|passthru|preg_\w+|execute|echo|print|print_r|var_dump|(fp)open|alert|showmodaldialog)\(
xwork\.MethodAccessor
(gopher|doc|php|glob|file|phar|zlib|ftp|ldap|dict|ogg|data)\:\/
java\.lang
\$_(GET|post|cookie|files|session|env|phplib|GLOBALS|SERVER)\[
\<(iframe|script|body|img|layer|div|meta|style|base|object|input)
(onmouseover|onerror|onload)\=
Create post 2013-11-08 15:55:40 +00:00			`select.+(from\|limit)`
			`(?:(union(.*?)select))`
			`having\|rongjitest`
			`sleep\((\s)(\d)(\s*)\)`
			`benchmark\((.)\,(.)\)`
			`base64_decode\(`
			`(?:from\W+information_schema\W)`
			`(?:(?:current_)user\|database\|schema\|connection_id)\s*\(`
			`(?:etc\/\W*passwd)`
			`into(\s+)+(?:dump\|out)file\s*`
			`group\s+by.+\(`
			`xwork.MethodAccessor`
			`(?:define\|eval\|file_get_contents\|include\|require\|require_once\|shell_exec\|phpinfo\|system\|passthru\|preg_\w+\|execute\|echo\|print\|print_r\|var_dump\|(fp)open\|alert\|showmodaldialog)\(`
			`xwork\.MethodAccessor`
			`(gopher\|doc\|php\|glob\|file\|phar\|zlib\|ftp\|ldap\|dict\|ogg\|data)\:\/`
			`java\.lang`
			`\$_(GET\|post\|cookie\|files\|session\|env\|phplib\|GLOBALS\|SERVER)\[`
Update post 2013-11-29 16:46:58 +00:00			`\<(iframe\|script\|body\|img\|layer\|div\|meta\|style\|base\|object\|input)`
fix post error rules 2013-12-12 08:10:46 +00:00			`(onmouseover\|onerror\|onload)\=`