Re: Weird HTTP requestApr 05 2012 05:23PM Stephanus J Alex Taidri (securityfocus ae taidri com)
This is a WordPress injection attack attempt.
On Thu, Apr 5, 2012 at 10:29 PM, J M <jerome.m (at) gmail (dot) com [email concealed]> wrote:
>
> Hi ALL,
>
> i was wondering if someone has an idea what the URL request does...
>
> http://www.domain.com/wp-content/plugins/sociable-30/addtofadexOf(c_name
%20+%20%22=%22);%20%20if%20(c_start!=-1)%20%20%20%20%7B%20%20%20%20%20c_
start=c_start%20+%20c_name.length+1;%20%20%20%20%20c_end=document.cookie
.indexOf(%22;%22,c_start);%20%20%20%20if%20(c_end==-1)%20c_end=document.
cookie.length;%20%20%20%20return%20unescape(document.cookie.substring(c_
start,c_end));%20%20%20%20%7D%20%20%20%7Dreturn%20%22%22;%7D%3C/script%3
E%3Cscript%20type=%22text/javascript%22%20language=%22javascript%22%3Eva
r%20countDownInterval=10*60;%20//secondsvar%20countDownTime=countDownInt
erval+1;//countdown%20functionfunction%20countDown()%7BcountDownTime--;i
f%20(countDownTime%20%3C=0)%7BcountDownTime=countDownInterval;clearTimeo
ut(counter);window.location.reload();return;%7Dif%20(document.all)%7B%20
//if%20IE%204+//document.all.countDownText.innerText%20=%20countDownTime
+%22%20%22;%7D%20else%20if%20(document.getElementById)%20%7B%20//else%20
if%20NS6+//document.getElementById(%22countDownText%22).innerHTML=countD
ownTime+%22%20%22;%7Dcounter=setTimeout(%22countDown()%22,%201000);%7D//
toggle%20functionfunction%20toggleRefresh(onoff)%7Bif%20(onoff==%22off%2
2)%20%7BclearTimeout(counter);mycmd%20=%20%22norefresh%22;%7D%20else%20%
7BcountDownTime=countDownInterval+1;countDown();mycmd%20=%20%22yesrefres
h%22;%7D//update%20classes//reset%20classes%20to%20orginaldocument.getEl
ementById
>
>
> tia,
>
> ------------------------------------------------------------------------
> Securing Apache Web Server with thawte Digital Certificate
> In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.
>
> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
> ------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.
On Thu, Apr 5, 2012 at 10:29 PM, J M <jerome.m (at) gmail (dot) com [email concealed]> wrote:
>
> Hi ALL,
>
> i was wondering if someone has an idea what the URL request does...
>
> http://www.domain.com/wp-content/plugins/sociable-30/addtofadexOf(c_name
%20+%20%22=%22);%20%20if%20(c_start!=-1)%20%20%20%20%7B%20%20%20%20%20c_
start=c_start%20+%20c_name.length+1;%20%20%20%20%20c_end=document.cookie
.indexOf(%22;%22,c_start);%20%20%20%20if%20(c_end==-1)%20c_end=document.
cookie.length;%20%20%20%20return%20unescape(document.cookie.substring(c_
start,c_end));%20%20%20%20%7D%20%20%20%7Dreturn%20%22%22;%7D%3C/script%3
E%3Cscript%20type=%22text/javascript%22%20language=%22javascript%22%3Eva
r%20countDownInterval=10*60;%20//secondsvar%20countDownTime=countDownInt
erval+1;//countdown%20functionfunction%20countDown()%7BcountDownTime--;i
f%20(countDownTime%20%3C=0)%7BcountDownTime=countDownInterval;clearTimeo
ut(counter);window.location.reload();return;%7Dif%20(document.all)%7B%20
//if%20IE%204+//document.all.countDownText.innerText%20=%20countDownTime
+%22%20%22;%7D%20else%20if%20(document.getElementById)%20%7B%20//else%20
if%20NS6+//document.getElementById(%22countDownText%22).innerHTML=countD
ownTime+%22%20%22;%7Dcounter=setTimeout(%22countDown()%22,%201000);%7D//
toggle%20functionfunction%20toggleRefresh(onoff)%7Bif%20(onoff==%22off%2
2)%20%7BclearTimeout(counter);mycmd%20=%20%22norefresh%22;%7D%20else%20%
7BcountDownTime=countDownInterval+1;countDown();mycmd%20=%20%22yesrefres
h%22;%7D//update%20classes//reset%20classes%20to%20orginaldocument.getEl
ementById
>
>
> tia,
>
> ------------------------------------------------------------------------
> Securing Apache Web Server with thawte Digital Certificate
> In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.
>
> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
> ------------------------------------------------------------------------
>
------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.
http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
------------------------------------------------------------------------
[ reply ]