Avast community forum
Home
Help
Search
Login
Register
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
Fortinet's flags malware, many DOM XSS sinks & sources found up..
« previous
next »
Print
Pages: [
1
]
Go Down
Author
Topic: Fortinet's flags malware, many DOM XSS sinks & sources found up.. (Read 1236 times)
0 Members and 1 Guest are viewing this topic.
polonus
Avast Überevangelist
Probably Bot
Posts: 33902
malware fighter
Fortinet's flags malware, many DOM XSS sinks & sources found up..
«
on:
October 02, 2019, 11:16:08 PM »
See:
https://urlquery.net/report/0ef71dd3-3581-4004-810d-bd54c452363c
See:
https://www.virustotal.com/gui/url/8314d453cf1d5733e3c31791b26e70d55ab34c67afad07098e15b07ce5ec70e0/details
(no flags)
various IP detection on IP relations:
https://www.virustotal.com/gui/ip-address/109.120.167.1/relations
Results from scanning URL: -http://yantarny.net
Number of sources found: 7
Number of sinks found: 306
&
Results from scanning URL: -http://yantarny.net/t3-assets/jsf2fe3.js
Number of sources found: 330
Number of sinks found: 105
On that uri recommendations towards improvement by linting:
https://webhint.io/scanner/ce4a1356-5a38-4628-a2f8-d54677f86b67
web app. security tool results:
https://webcookies.org/cookies/yantarny.net/28498672?258820
various security glitches alerted
also consider link on website:
https://aw-snap.info/file-viewer/?protocol=secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=Z112MzkufXVg~enc
->
https://webhint.io/scanner/9dccb7e5-dffe-435c-b30a-9ae24af44ab6
GData flags malware there:
https://www.virustotal.com/gui/url/ccd0daedc3d3ea23221a745316928cc052b7c41200e73506abe583871d1296ae/detection
relations and detections for the Kalingrad section:
https://www.virustotal.com/gui/ip-address/91.209.69.210/relations
See the SQL Database here with various DOM XSS sinks and sources, while scanning URL: -https://tarif39.ru/bitrix/js/main/core/core_db.js?142847797010954 (Dr Web's URL check gives it the all green, tags included).
Number of sources found: 43
Number of sinks found: 20 Vulnerable to Bitrix 1.0.3 Path Traversal Vulnerability code injection exploit
->
https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=sql+injection
polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)
«
Last Edit: October 02, 2019, 11:39:34 PM by polonus
»
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.
Use NoScript, a limited user account and a virtual machine and be safe(r)!
Print
Pages: [
1
]
Go Up
« previous
next »
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
Fortinet's flags malware, many DOM XSS sinks & sources found up..