CPC G06F 21/563 (2013.01) [G06F 16/958 (2019.01); G06F 21/51 (2013.01); G06F 21/6218 (2013.01); G06F 2221/034 (2013.01)] | 19 Claims |
1. A method for protecting core files in a content management system (CMS), the method comprising:
detecting execution of a script on a computing device;
determining whether the script is located in a core folder of the CMS;
in response to determining that the script is located in the core folder, determining whether a path of the script is included in an exclude list that comprises paths of scripts and files that are marked as not malicious;
in response to determining that the path of the script is not in the exclude list, blocking the execution of the script;
in response to determining that the script is not located in the core folder, determining whether the script will upload, to the core folder, a file that is not in the exclude list;
in response to determining that the script will upload the file to the core folder, blocking write functions in the script during the execution.
|