Menu

#675 Possible Code Injection

Current CVS - REL_2_0
open
nobody
invocation (88)
5
2007-03-17
2007-03-17
dendrob
No

I found that a piece of code has been injected into my database. I'm running the latest version. I'll leave the hacked site up for a day or two, so please take a look.

Look at this link: http://www.vivariumtopsites.com/namestats-kyle1745.htm

if you're using IE
you'll notice a small box in the upper right

if you're using FF, you'll see a partially covered google ad

the code that has been injected is this:

<center>
<script language='JavaScript' type='text/javascript' src='http://www.orchidboard.com/ads/adx.js'></script>
<script language='JavaScript' type='text/javascript' src='http://www.orchidboard.com/ads/adlayer.php?what=zone:10&amp;target=_blank&amp;layerstyle=geocities&amp;align=right&amp;padding=2&amp;closetext=%5BClose%5D'></script>
</center>

Please let me know how OpenAds can be protected against something like this. I'm on currently using Openads 2.0.11 running on Apache 1.3.37, PHP 4.4.4 and MySQL 4.1.21-standard.

Discussion

  • dendrob

    dendrob - 2007-03-17

    Hacker's google ad in the top left corner of the page, partially covered by a flash header

     
    Thumbnail
    hack.jpg

  • robbo

    robbo - 2007-06-10

    Logged In: YES
    user_id=1813583
    Originator: NO

    I am also experiencing code injections

    PHP Version 4.3.11
    Apache/2.0.59 (Unix)
    mysql 4.1.20
    Openads 2.0.11-pr1

     

Log in to post a comment.

Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.