spiceweasel Posted June 18, 2008 Share Posted June 18, 2008 Newbie question i afraid. ive recently been finding strange javascript code in pages of my websites which tries to download some 'xpdefender' program. When i contacted my hosting company they said it was due to insecure php allowing code injections but some of the pages infected dont have any php on them. Is this possible or has my hosting company got server security issues?? Thanks in advance. Link to comment https://forums.phpfreaks.com/topic/110716-unsecure-code/ Share on other sites More sharing options...
trq Posted June 18, 2008 Share Posted June 18, 2008 Is this possible or has my hosting company got server security issues?? Yes, its very possible and in fact the most likely issue. Link to comment https://forums.phpfreaks.com/topic/110716-unsecure-code/#findComment-568034 Share on other sites More sharing options...
spiceweasel Posted June 18, 2008 Author Share Posted June 18, 2008 Wow thanks for the quick reply thorpe? so this remains true even if their is no php on the actual page effected ie. i put up an html landing page and this also had code injected into it. so all they need is a site containing one insecure page and they can insert code into any other page they choose regardless of there coding in it or not???? sorry to seem thick i need to get this issue clear in my head! and can you recommend a resource that would help me secure my code im new to php and i would place myself in the catergory/level of being able to understand already written scripts but whenever i write my own they never work correctly lol! Link to comment https://forums.phpfreaks.com/topic/110716-unsecure-code/#findComment-568055 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.