#!/usr/bin/php <?php // Simple detection script for JUL‑448 $base = __DIR__; $files = new RecursiveIteratorIterator( new RecursiveDirectoryIterator($base) ); foreach ($files as $file) if ($file->getExtension() !== 'php') continue; $content = file_get_contents($file->getPathname()); if (preg_match('/file_get_contents\(\s*\$[a-zA-Z0-9_]+\s*\)/', $content) && preg_match('/allow_url_include\s*=\s*On/i', ini_get('allow_url_include'))) echo "[!] Potential JUL‑448 in: $file->getPathname()\n";
If you’re not sure about the details, you can still give me a hint about the general area (e.g., “the new logging format for JUL‑448”) and I can provide a that appear in similar tickets. For example: JUL-448