Author Topic: A PHISH and jQuery issues and more on this website....  (Read 794 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
A PHISH and jQuery issues and more on this website....
« on: January 20, 2018, 06:45:33 PM »
Re: http://urlquery.net/report/29b8742c-9e60-4b94-884d-803dc8680b6f
fortinet's phishing blacklisted...
Re: https://aw-snap.info/file-viewer/?protocol=not-secure&tgt=www.farbook.ir&ref_sel=GSP2&ua_sel=ff&fs=1
Retirable jQuery libraries: http://retire.insecurity.today/#!/scan/78a0b50f33c59ede9437855647c98646ea42d33e7a50517be59713fc253c4df0
F-grade status and recommendations: https://observatory.mozilla.org/analyze.html?host=www.farbook.ir

error in code
Quote
-www.farbook.ir/shopping/js/Shopping1.js
          info: [img] -www.farbook.ir/global/images/close.png
     info: [decodingLevel=0] found JavaScript
     error: undefined variable jQuery
9 privacy related issues: https://privacyscore.org/site/86501/
1 tracker: trustseal from -https://enamad.ir/

DOM-XSS relations - Results from scanning URL: -http://www.farbook.ir/shopping/js/Shopping1.js
Number of sources found: 2
Number of sinks found: 2  (.top & .search)

Results from scanning URL: -http://www.enjoyyourcoffee.net/PF.Base/static/jscript/common.js?v=220c839493725375864ec301d5034257
Number of sources found: 1
Number of sinks found: 2

Results from scanning URL: -http://www.enjoyyourcoffee.net/PF.Base/static/jscript/ajax.js?v=220c839493725375864ec301d5034257
Number of sources found: 11
Number of sinks found: 9

And results from scanning URL: -https://img1.wsimg.com/tcc/tcc_l.combined.1.0.6.min.js
Number of sources found: 0
Number of sinks found: 0

polonus (volunteer website security analyst and website error-hunter)
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!