Free Links no wait nasty Evil Bug - Webdigity webmaster forums

12, May 2008	Free Links no wait nasty Evil Bug - webmaster forum
	This forum shares its ad revenue with its members!
Navigation Webdigity Services Pagerank Monitor Whois Tool Web Design Gallery Webmaster Forums Webmaster Directory Tutorials Database Webmaster Forums WebDigity Community HumanWorks network new... Clickbank Contextual S... Forum Contests Forum Lounge New Member Introductions Tech News Google Forum User Forums aStatSpam forum Computers 3rd-Party Scripting The 100 Lists Website ... PixelThings Smart Publisher Forums Talk Design and Layout General webmaster disc... Graphics & Multimedia Adobe Photoshop Macromedia Flash & Act... Web Page Design HTML & XHTML CSS Accesibility issues Website & Graphic Revi... Web Development PhP PHP classes @finalwebs... Php User Class JavaScript Databases MySQL Security Miscellaneous Languages ASP & .NET Java & JSP Web hosting talk Hosting companies Domain names Configuring your server Apache web server Monetizing your site General Business CPC programs Adsense Chitika eMiniMalls CPM programs Affiliate programs & o... Web site promotion Promotion techniques Search Engine Optimiza... Google SEO Promoting & building a... SMF moding & promoting Marketplace Advertise your services Sell your site Sell a domain name Request services Hire people Link trading requests [ Home \| Help \| Search \| Forum's Shop \| Archive \| Login \| Register \| Webmaster Directory ]

Webdigity Webmaster Forums > Web Development > Security
Topic: Free Links no wait nasty Evil Bug

« previous next »

Pages: [1]

Author

Topic: Free Links no wait nasty Evil Bug (Read 681 times)

Tim Nash
Global Moderator
Community Supporter ?
Internet Junkie

Posts: 2169
5008 credits
Members referred : 2

Venture Skills - New Media & IT group

« on: Apr 28, 2007, 12:39:38 AM »

So depending on your point of view a great way to get back links or an Evil XSS attack focused around phpinfo()
http://www.davidnaylor.co.uk/archives/2007/04/27/would-anyone-like-some-free-backlinks/

A programmer at David Naylor Blog has full details, don't you just love it when not only you find a bug but its one spammers can use!

Would you like to be an SEO, let me help with, The Tim Nash introduction to SEO

alternatively for Social media optimisation take a look at the Venture Skills Blog

Last blog : grumpy links

Global Moderator
Internet Junkie

Gender:

Posts: 1807
9006 credits
Members referred : 6

« Reply #1 on: Apr 28, 2007, 12:55:16 AM »

Thats a nasty bug, which I'm sure will be used by a lot of people.

free PHP scripts and PHP tutorials

| The Big Adsventure

| Lets Work Online!

| 43 Proxies

Last blog : Are You Stumbling Yet?

Global Moderator
Community Supporter ?
Jedai Sword Master

Gender:

Posts: 6236
38242 credits
Members referred : 374

It's time to use PHP5!

« Reply #2 on: Apr 28, 2007, 01:12:12 AM »

great, and it works also with version 4.3.11

Free WordPress Themes

CMS Reviews and Resources

PHP Scripts Archive

Last blog : Website layout dimensions today

I am a metal monkey!
Administrator
Community Supporter ?
Jedai Sword Master

Gender:

Posts: 7822
39867 credits
Members referred : 3

« Reply #3 on: Apr 28, 2007, 02:01:25 PM »

Hmmm. Today I made a script that takes full advantage of this Smiley

My only prob is how to get those links indexed.

BTW do you think it would be wise to sell that script or I should just keep it for me and my friends?

Trial and Error my two best teachers Cool

Promote your blog for free....

Last blog : Keep it Legal - Tims guide to legal notices

Tim Nash
Global Moderator
Community Supporter ?
Internet Junkie

Posts: 2169
5008 credits
Members referred : 2

Venture Skills - New Media & IT group

« Reply #4 on: Apr 28, 2007, 03:28:05 PM »

I wouldn't sell it might damage your reputation how about making a bit of a tutorial out of it, and include the how to secure such problems Wink

Would you like to be an SEO, let me help with, The Tim Nash introduction to SEO

alternatively for Social media optimisation take a look at the Venture Skills Blog

Last blog : grumpy links

I am a fanatic. So?

Gender:

Posts: 584
3633 credits
Members referred : 2

« Reply #5 on: Apr 29, 2007, 01:08:09 AM »

Hmm, I wish I understood what was happening here.

Forgive the stupid question - but is this based on the version of php my host is using?

If you make a tutorial on how to protect against this, please let me know - then maybe I could hope to understand what this is all about.

www.yourmessageconsultant.com

, providing online content and printed marketing materials.
www.helpforwebbeginners.com

, Tutorials and how to's for new webmasters.
www.CraftyTips.com

, a unique Arts & Crafts Directory
www.nocans.com

- Pet Food Recipe Site
www.petsiteguides.com

- A New Pet Directory

Last blog : Privacy Policy for Blog About Crafts

Global Moderator
Community Supporter ?
Jedai Sword Master

Gender:

Posts: 6236
38242 credits
Members referred : 374

It's time to use PHP5!

« Reply #6 on: Apr 29, 2007, 08:54:44 AM »

Quote from: YMC on Apr 29, 2007, 01:08:09 AM

how to protect? don't publish a phpinfo file Smiley

Free WordPress Themes

CMS Reviews and Resources

PHP Scripts Archive

Last blog : Website layout dimensions today

I am a metal monkey!
Administrator
Community Supporter ?
Jedai Sword Master

Gender:

Posts: 7822
39867 credits
Members referred : 3

« Reply #7 on: Apr 29, 2007, 04:26:24 PM »

Tim, you are right it would be wrong to publish that.

YMC, having a phpinfo() page on your server may be a real problem. This specific "bug" is not really a problem for the host owner.

But phpinfo can - some times - provide critical information to a hacker Smiley

Trial and Error my two best teachers Cool

Promote your blog for free....

Last blog : Keep it Legal - Tims guide to legal notices

Trackback URI for this entry : http://www.webdigity.com/trackback.php?topic=6477

Tags : xss php

Bookmark this thread : Digg Del.icio.us Dzone more....

Topic sponsors:
Get a permanent link here for $1.99!

Pages: [1]

Webdigity Webmaster Forums > Web Development > Security
Topic: Free Links no wait nasty Evil Bug

« previous next »

Jump to:

User Area
Welcome, Guest. Please login or register. Did you miss your activation email? May 12, 2008, 08:23:37 AM Login with username, password and session length

Donate to our community, and get a permanent link back to your site!

Forum Statistics
Total Posts: 34.924 Total Topics: 7.261 Total Members: 3.476 Tutorials : 56 Resources : 143 Designs : 220 Latest Member: ratatoile 17 Guests, 3 Users online : Yahoo crawler, adsense, Baidu Spider 10 users online today: ratatoile, ronaldo30, Paradroid, YMC, droom, cybergod, Nikolas, AdamMcHugh, Gayathri, vbignacio

Recent topics
Re: Whois Database Launched... New Facebook Marketing arti... JH-Motorsport review If Exist in a CMS Environme... Approached to place ads onl... Re: DigitalPoint The Evolution of a Programm... Re: Hello everyone,

HumanWorks Network
Technology news Webmaster articles Sublime web directory RSS Feed directory and viewer

Readers

Web Design Gallery · Whois Lookup · Pagerank · Tag Browsing · Lo-fi version · Syndication · Webmaster forum history · Advertise
Developed by HumanWorks © 2005 - 2008 Webdigity webmaster community · sublime directory
Webdigity Webmaster Forums | Powered by SMF 1.0.12. © 2001-2005, Lewis Media. All Rights Reserved.

Free Links no wait nasty Evil Bug - webmaster forum