« previous next »
Pages: [1]   Go Down

Author Topic: Website is blacklisted and with malware..  (Read 1535 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 34051
  • malware fighter
Website is blacklisted and with malware..
« on: August 04, 2018, 12:58:05 PM »
Malware: Results from scanning URL: -http://pashafrendley.hr00.ru/js/funcs.js
Number of sources found: 41
Number of sinks found: 17
Quote
function err(){   var i = 0;   setInterval(function(){if (i % 2 == 0)$('#wrong').show();else$('#wrong').hide();i++;   }, 500); }

JavaScript can be set in time intervals; the setInterval() method will continue calling the function until clearInterval() is called,
or the window is closed

Re: https://urlquery.net/report/c5d1e005-cae3-4e97-880c-adace28c7342
Re: https://aw-snap.info/file-viewer/?protocol=not-secure&tgt=pashafrendley.hr00.ru&ref_sel=GSP2&ua_sel=ff&fs=1
DOM-XSS opening towards: Results from scanning URL: -http://www.backseatlistening.com/__media__/js/netsoltrademark.php?d=goldendowner.blogspot.com
Number of sources found: 1
Number of sinks found: 19
& Results from scanning URL: htxp://wojskowa-federacja-sportu.pl/?p=1
Quote
function err(){
var i = 0;
setInterval(function(){
if (i % 2 == 0)
$('#wrong').show();
else
$('#wrong').hide();
i++;
}, 500);
}
14 security errors see: https://sonarwhal.com/scanner/89a9c10e-5583-4ec6-9e3a-aa535a246c0a
Vulnerable JavaScript library detected with SNYK: jQuery@1.12.4 has 1 known vulnerabilities (1 medium). See https://snyk.io/vuln/npm:jquery for more information.
http://pashafrendley.hr00.ru/

polonus (volunteer website security analyst and website error-hunter)
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 34051
  • malware fighter
Re: Website is blacklisted and with malware..
« Reply #1 on: August 04, 2018, 03:31:23 PM »
Vulnerablr to a lot of xss-issues: https://retire.insecurity.today/#!/scan/1067d10ac6c1378c4987c45d4d1563ec13e86a164d02ad995ca24fe2bcb15b91
"$.parse HTML" has lot of xss issues and cannot be labeled as secure in current implementation, needed is an explicit S.selector call added to jQuery. (source =bugs.jquery.com)  - we also have this error in that code
Quote
-ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
     status: (referer=XXX?q=puppies)saved 97163 bytes 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
     info: ActiveXDataObjectsMDAC detected Microsoft.XMLHTTP
     info: [decodingLevel=0] found JavaScript
     error: undefined variable n
     file: 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb: 97163 bytes


pol
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »