Security Basics mailing list archives
Re: Weird HTTP request
From: Henri Salo <henri () nerv fi>
Date: Sat, 7 Apr 2012 08:45:20 +0300
On Thu, Apr 05, 2012 at 10:29:40AM -0400, J M wrote:
Hi ALL, i was wondering if someone has an idea what the URL request does... http://www.domain.com/wp-content/plugins/sociable-30/addtofadexOf(c_name%20+%20%22=%22);%20%20if%20(c_start!=-1)%20%20%20%20%7B%20%20%20%20%20c_start=c_start%20+%20c_name.length+1;%20%20%20%20%20c_end=document.cookie.indexOf(%22;%22,c_start);%20%20%20%20if%20(c_end==-1)%20c_end=document.cookie.length;%20%20%20%20return%20unescape(document.cookie.substring(c_start,c_end));%20%20%20%20%7D%20%20%20%7Dreturn%20%22%22;%7D%3C/script%3E%3Cscript%20type=%22text/javascript%22%20language=%22javascript%22%3Evar%20countDownInterval=10*60;%20//secondsvar%20countDownTime=countDownInterval+1;//countdown%20functionfunction%20countDown()%7BcountDownTime--;if%20(countDownTime%20%3C=0)%7BcountDownTime=countDownInterval;clearTimeout(counter);window.location.reload();return;%7Dif%20(document.all)%7B%20//if%20IE%204+//document.all.countDownText.innerText%20=%20countDownTime+%22%20%22;%7D%20else%20if%20(document.getElementById)%20%7B%20//else%20if%20NS6+//document.getElementById(%22countDownText%22).innerHTML=countDownTime+%22%20% 22;%7Dcounter=setTimeout(%22countDown()%22,%201000);%7D//toggle%20functionfunction%20toggleRefresh(onoff)%7Bif%20(onoff==%22off%22)%20%7BclearTimeout(counter);mycmd%20=%20%22norefresh%22;%7D%20else%20%7BcountDownTime=countDownInterval+1;countDown();mycmd%20=%20%22yesrefresh%22;%7D//update%20classes//reset%20classes%20to%20orginaldocument.getElementById tia,
This plugin is not visible in WordPress plugin search[1], which usually means you should NOT use this plugin. Sometimes the reason is that developer has decided not to develop this plugin anymore and sometimes because of WordPress administrators decided to hide the plugin from plugin search to avoid security issues. Version controlling trunk for this plugin only contains readme-file[2], but tags are still there[3]. Which version of the plugin are you using? I also found that they do have code in here[4]. 1: http://wordpress.org/extend/plugins/sociable-30 2: http://plugins.svn.wordpress.org/sociable-30/trunk/ 3: http://plugins.svn.wordpress.org/sociable-30/tags/ 4: http://code.google.com/p/wordpress-sociable-30/ - Henri Salo ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Weird HTTP request J M (Apr 05)
- Re: Weird HTTP request Pierre Jaury (Apr 05)
- Re: Weird HTTP request Patrick Laverty (Apr 05)
- Re: Weird HTTP request E M (Apr 05)
- Re: Weird HTTP request Andre Silaghi (Apr 09)
- Re: Weird HTTP request E M (Apr 05)
- Re: Weird HTTP request Stephanus J Alex Taidri (Apr 05)
- Re: Weird HTTP request Henri Salo (Apr 09)
- <Possible follow-ups>
- Re: Weird HTTP request Alexander Meesters (Apr 09)