How do they do this?

Discussion in 'Black Hat SEO' started by ctrlfreak, Feb 25, 2010.

  1. ctrlfreak

    ctrlfreak Registered Member

    Joined:
    Sep 19, 2007
    Messages:
    96
    Likes Received:
    50
    Occupation:
    innernet markatur
    Location:
    Outside the box
    If you look up "buy cialis" in Google, you see a bunch of .edu's listed, but when you click on them they redirect to pharm sites. I know you know how this is being done, now pls. drop some knowledge.

    buy cialis
    web.ics.purdue.edu/~acm/index.php
    templates.joomlart.com/ja_avian/

    buy viagra
    ensorcelled.berkeley.edu/.../strange-old-world-a-review-of-the-eternal-champion/

    catalog.fiu.edu/
    :congrats:
     
  2. jazzc

    jazzc Moderator Staff Member Moderator Jr. VIP

    Joined:
    Jan 27, 2009
    Messages:
    2,907
    Likes Received:
    13,014
    Occupation:
    Potentate
    Location:
    Asuncion
    It 's simple. Those sites suffer from XSS injection vulnerabilities and to be more precise from permanent type of XSS injection.

    So, all they need to do is write a simple javascript code and voila.

    Sometimes, they also hack them in a classic way.
     
  3. ctrlfreak

    ctrlfreak Registered Member

    Joined:
    Sep 19, 2007
    Messages:
    96
    Likes Received:
    50
    Occupation:
    innernet markatur
    Location:
    Outside the box
    Thanks JazzC, you definitely know what is up. I appreciate the information.
     
  4. aмillionaírе

    aмillionaírе Power Member

    Joined:
    Apr 20, 2008
    Messages:
    531
    Likes Received:
    359
    They stuff em with XSS is right. So much foolish .edu sites are vulnerable.
     
  5. xtremis

    xtremis Newbie

    Joined:
    Feb 11, 2009
    Messages:
    43
    Likes Received:
    1
    Occupation:
    Marketer
    Location:
    Uluku Island
    This is interesting, I did not know and I always wondered the same :)