danreb/drupal-sql-injection-patcher.sh

Created October 16, 2014 06:22

Star () You must be signed in to star a gist
Fork () You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/danreb/d6c85637ead57fcda287.js"></script>
Save danreb/d6c85637ead57fcda287 to your computer and use it in GitHub Desktop.

Download ZIP

Do a find and replace to apply the patch for SA-CORE-2014-005 - Drupal core - SQL injection

Raw

drupal-sql-injection-patcher.sh

	#!/bin/bash
	find . -type f -name "database.inc" -exec sed -i 's/foreach ($data as $i => $value) {/foreach (array_values($data) as $i => $value) {/g' {} \;

Author

danreb commented Oct 16, 2014

HOW TO USE?

Create a shell script file in your Linux server e.g "sql-injection-patcher.sh" and copy the code above.

touch sql-injection-patcher.sh
Add execute permission to script using CHMOD command

chmod +x sql-injection-patcher.sh
Execute the script

sh sql-injection-patcher.sh

ENJOY!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment