SA-CORE-2013-003 - Drupal core - Multiple vulnerabilities на nginx
Submitted by Svetoslav Stoyanov on Fri, 2014-02-28 09:53https://drupal.org/SA-CORE-2013-003
Добави в блока на сървъра:
location ~* /(files|files-private|tmp)/.*\.php$ {
deny all;
}
deny all;
}