{"id":4976,"date":"2025-12-17T11:24:36","date_gmt":"2025-12-17T11:24:36","guid":{"rendered":"https:\/\/www.airsang.com\/?p=4976"},"modified":"2026-01-05T09:24:19","modified_gmt":"2026-01-05T09:24:19","slug":"cac-cuoc-tan-cong-phat-lai-vao-wordpress-moi-de-doa-thuc-su-hay-chi-la-huyen-thoai-duoc-thoi-phong-qua-muc","status":"publish","type":"post","link":"https:\/\/www.airsang.com\/vi\/cac-cuoc-tan-cong-phat-lai-vao-wordpress-moi-de-doa-thuc-su-hay-chi-la-huyen-thoai-duoc-thoi-phong-qua-muc\/","title":{"rendered":"T\u1ea5n c\u00f4ng ph\u00e1t l\u1ea1i tr\u00ean WordPress: M\u1ed1i \u0111e d\u1ecda th\u1ef1c s\u1ef1 hay ch\u1ec9 l\u00e0 huy\u1ec1n tho\u1ea1i \u0111\u01b0\u1ee3c th\u1ed5i ph\u1ed3ng qu\u00e1 m\u1ee9c?"},"content":{"rendered":"
\"T\u1ea5n<\/figure>\n\n\n\n

Tr\u01b0\u1edbc ti\u00ean, ch\u00fang ta c\u1ea7n l\u00e0m r\u00f5 m\u1ed9t s\u1ed1 \u0111i\u1ec1u.<\/p>\n\n\n\n

C\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng b\u1eb1ng c\u00e1ch ph\u00e1t l\u1ea1i d\u1eef li\u1ec7u tr\u00f4ng kh\u00f4ng \u0111\u00e1ng s\u1ee3.
H\u1ecd kh\u00f4ng ph\u00e1 m\u1eadt kh\u1ea9u.
H\u1ecd kh\u00f4ng ch\u00e8n m\u00e3 \u0111\u1ed9c v\u1edbi nh\u1eefng \u0111o\u1ea1n m\u00e3 hacker m\u00e0u xanh l\u00e1 c\u00e2y bay t\u1ee9 tung kh\u1eafp n\u01a1i.<\/p>\n\n\n\n

H\u1ecd x\u1ea3o quy\u1ec7t. L\u1ecbch s\u1ef1. V\u00e0 hi\u1ec7u qu\u1ea3 \u0111\u1ebfn m\u1ee9c kh\u00f3 ch\u1ecbu.<\/p>\n\n\n\n

V\u00e0 \u0111\u00fang v\u1eady, ch\u00fang ho\u00e0n to\u00e0n \u00e1p d\u1ee5ng cho WordPress<\/a><\/strong> c\u00e1c trang web.<\/p>\n\n\n\n

\u0110\u1eb7c bi\u1ec7t n\u1ebfu trang web c\u1ee7a b\u1ea1n x\u1eed l\u00fd \u0111\u0103ng nh\u1eadp, thanh to\u00e1n, bi\u1ec3u m\u1eabu li\u00ean h\u1ec7, y\u00eau c\u1ea7u AJAX ho\u1eb7c b\u1ea5t k\u1ef3 th\u1ee9 g\u00ec li\u00ean quan \u0111\u1ebfn n\u00fat "G\u1eedi".<\/p>\n\n\n\n

V\u1eady\u2026 T\u1ea5n c\u00f4ng ph\u00e1t l\u1ea1i l\u00e0 g\u00ec (theo ng\u00f4n ng\u1eef d\u1ec5 hi\u1ec3u)?<\/h2>\n\n\n\n
\"T\u1ea5n<\/figure>\n\n\n\n

V\u1ec1 c\u01a1 b\u1ea3n, t\u1ea5n c\u00f4ng b\u1eb1ng c\u00e1ch ph\u00e1t l\u1ea1i (replay attack) l\u00e0 nh\u01b0 sau:<\/p>\n\n\n\n

K\u1ebb t\u1ea5n c\u00f4ng ghi l\u1ea1i m\u1ed9t y\u00eau c\u1ea7u h\u1ee3p l\u1ec7\u2014nh\u01b0 \u0111\u0103ng nh\u1eadp, \u0111i\u1ec1n bi\u1ec3u m\u1eabu ho\u1eb7c thanh to\u00e1n\u2014r\u1ed3i g\u1eedi l\u1ea1i y\u00eau c\u1ea7u \u0111\u00f3. R\u1ed3i l\u1ea1i g\u1eedi \u0111i g\u1eedi l\u1ea1i nhi\u1ec1u l\u1ea7n.<\/p>\n\n\n\n

Kh\u00f4ng c\u1ea7n k\u1ef9 n\u0103ng hack.
Ch\u1ec9 c\u1ea7n sao ch\u00e9p \u2192 d\u00e1n \u2192 ki\u1ebfm l\u1eddi.<\/p>\n\n\n\n

N\u1ebfu trang web WordPress c\u1ee7a b\u1ea1n kh\u00f4ng ki\u1ec3m tra xem y\u00eau c\u1ea7u \u0111\u00f3 \u0111\u00e3 \u0111\u01b0\u1ee3c s\u1eed d\u1ee5ng hay ch\u01b0a, trang web c\u1ee7a b\u1ea1n s\u1ebd hi\u1ec3n th\u1ecb th\u00f4ng b\u00e1o:<\/p>\n\n\n\n

\u201cCh\u1eafc ch\u1eafn r\u1ed3i! Ch\u00fang ta l\u00e0m l\u1ea1i l\u1ea7n n\u1eefa nh\u00e9.\u201d<\/p>\n\n\n\n

V\u00e0 \u0111\u00f3 l\u00e0 n\u01a1i r\u1eafc r\u1ed1i b\u1eaft \u0111\u1ea7u.<\/p>\n\n\n\n

V\u00ec sao c\u00e1c trang web WordPress l\u1ea1i l\u00e0 m\u1ee5c ti\u00eau h\u00e0ng \u0111\u1ea7u?<\/h2>\n\n\n\n
\"T\u1ea5n<\/figure>\n\n\n\n

WordPress kh\u00f4ng ph\u1ea3i l\u00e0 kh\u00f4ng an to\u00e0n theo m\u1eb7c \u0111\u1ecbnh\u2014nh\u01b0ng n\u00f3 r\u1ea5t linh ho\u1ea1t. V\u00e0 s\u1ef1 linh ho\u1ea1t d\u1ec5 d\u1eabn \u0111\u1ebfn sai s\u00f3t.<\/p>\n\n\n\n

\u0110\u00e2y l\u00e0 l\u00fd do t\u1ea1i sao c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng ph\u00e1t l\u1ea1i l\u1ea1i \u01b0a th\u00edch WordPress:<\/p>\n\n\n\n