Avast community forum
Home
Help
Search
Login
Register
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
Given as green now, but with spammy looking links and jQuery issue.
« previous
next »
Print
Pages: [
1
]
Go Down
Author
Topic: Given as green now, but with spammy looking links and jQuery issue. (Read 935 times)
0 Members and 1 Guest are viewing this topic.
polonus
Avast Überevangelist
Probably Bot
Posts: 34053
malware fighter
Given as green now, but with spammy looking links and jQuery issue.
«
on:
March 06, 2016, 06:22:53 PM »
See:
http://killmalware.com/opencartsoft.net/#
http://opencartsoft.net/
Detected libraries:
jquery - 1.7.1 : (active1) -http://opencartsoft.net/catalog/view/javascript/jquery/jquery-1.7.1.min.js
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
jquery-ui-dialog - 1.8.16 : (active1) -http://opencartsoft.net/catalog/view/javascript/jquery/ui/jquery-ui-1.8.16.custom.min.js
Info: Severity: medium
http://bugs.jqueryui.com/ticket/6016
jquery-ui-autocomplete - 1.8.16 :-http://opencartsoft.net/catalog/view/javascript/jquery/ui/jquery-ui-1.8.16.custom.min.js *
(active) - the library was also found to be active by running code
2 vulnerable libraries detected
Is there a generic backdoor vulnerability for \jquery-ui-1.8.16.custom.min.js. ? PUA Inbox Toolbar or Generic/FakeAlert?
Spammy looking links
Any links with funky anchor text? Yes there are. show.
<a onclick="$('input[name=\'currency_code\']').attr('value', 'EUR').submit(); $(this).parent().parent().parent().parent().submit();">Euro</a>
<a onclick="$('input[name=\'currency_code\']').attr('value', 'TRY').submit(); $(this).parent().parent().parent().parent().submit();">T??rk Liras??</a>
<a onclick="$('input[name=\'currency_code\']').attr('value', 'USD').submit(); $(this).parent().parent().parent().parent().submit();">US Dollar</a>
linux LiteSpeed PHP5.4.38 ->
http://toolbar.netcraft.com/site_report?url=http://opencartsoft.net
Green with A Status:
https://sritest.io/#report/058cb7cf-8b65-4cbf-ab35-76ee05ae3397
polonus
«
Last Edit: March 06, 2016, 06:29:05 PM by polonus
»
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.
Use NoScript, a limited user account and a virtual machine and be safe(r)!
Print
Pages: [
1
]
Go Up
« previous
next »
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
Given as green now, but with spammy looking links and jQuery issue.