1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

eB*ay Blackhat?

Discussion in 'Black Hat SEO' started by Viltedali, Feb 24, 2008.

  1. Viltedali

    Viltedali Regular Member

    Joined:
    Feb 10, 2008
    Messages:
    305
    Likes Received:
    32
    Location:
    Midwest-US
    Hello

    I have read somewhere that although JavaScript cannot be included in eB*ay auction listings, flash can be and that flash can be used to call? (Execute, whatever) ASP.

    I would imagine that could be used for black hat purposes.

    Is this accurate, and has anyone capitalized on this possible exploit?

    Thanks
     
  2. djw

    djw Newbie

    Joined:
    Feb 2, 2008
    Messages:
    1
    Likes Received:
    0
    No; you need to learn the difference between client and server side code.

    The <object>/<embed> element would also have allowScriptAccess="never" set so you could not interact with the current window from flash.
     
  3. Viltedali

    Viltedali Regular Member

    Joined:
    Feb 10, 2008
    Messages:
    305
    Likes Received:
    32
    Location:
    Midwest-US
    Hello

    Okay, thanks.

    Actually, I know very little about code. I believe that JavaScript is client-side code and PHP, ASP, and CGI (or Perl?) Are server-side code.

    I just saw this in a project posting on a freelance site with the project creator insinuating that this would be possible, that's why I asked.

    Thanks