Dating Script Traffic Theft

redhippo · 06-27-2004, 03:49 PM

is this possible? whats happening? this a note i found posted at a board:

Traffic to

http://www.deepbluecomputerservices....ingdemo/dating

is being stolen by

http://www.dateopia.com

please help me stop this.

I am not sure what technology is being used to perform this theft.

Sincerely

asdfgg

Mr. Websites · 06-27-2004, 06:29 PM

I doubt that's possible, but it's a smart marketing move.

Peter · 06-28-2004, 09:28 AM

yeah I dont think that is possible without having access to configure the domain name,

what makes you think traffic is being stolen anyway

dgaussin · 06-28-2004, 10:02 AM

Sad, but it's possible, thanks to javascript..
????: NamePros.com http://www.namepros.com/the-break-room/36209-dating-script-traffic-theft.html

I got the index page from your server and analyse it. You have malicious code in your page. I guess someone create an account in your dating application and write the following javascript code to redirect page to datetopia.com

Code:

<script>document.location='http://www.datetopia.com';</script>

It's a very bad and shame attitude of course... I think the guilty user has userid = 12, but maybe he created more users like that...

Anyway remove the user 12 and see if that works.

And you'll have to fix your script : forbid any html code from the user in the inputs.

Hope that helps,
David.

06-27-2004, 03:49 PM	THREAD STARTER #1 (permalink)
redhippo NamePros Expert Join Date: Oct 2003 Location: ANForum Posts: 5,218	Dating Script Traffic Theft is this possible? whats happening? this a note i found posted at a board: Traffic to http://www.deepbluecomputerservices....ingdemo/dating is being stolen by http://www.dateopia.com please help me stop this. I am not sure what technology is being used to perform this theft. Sincerely asdfgg __________________ \|www.vb-skins.com\|- Quality Premade Vbulletin skins for Your VB forum makeover \|www.Banjir.com\|-Free image hosting?[B]For Sale!\|AlphaScripts\|Money Generating Scripts FREE VB Skins

06-28-2004, 09:28 AM	#3 (permalink)
Peter NamePros Expert Join Date: Nov 2003 Location: Scotland Posts: 5,074	yeah I dont think that is possible without having access to configure the domain name, what makes you think traffic is being stolen anyway __________________ Manage your portfolio using my new Domain Portfolio Management script. Securing Your Domain Name From Theft

06-28-2004, 10:02 AM	#4 (permalink)
dgaussin Senior Member Join Date: May 2004 Location: France Posts: 1,226 Follow @dgaussin	Sad, but it's possible, thanks to javascript.. ????: NamePros.com http://www.namepros.com/the-break-room/36209-dating-script-traffic-theft.html I got the index page from your server and analyse it. You have malicious code in your page. I guess someone create an account in your dating application and write the following javascript code to redirect page to datetopia.com Code: <script>document.location='http://www.datetopia.com';</script> It's a very bad and shame attitude of course... I think the guilty user has userid = 12, but maybe he created more users like that... Anyway remove the user 12 and see if that works. And you'll have to fix your script : forbid any html code from the user in the inputs. Hope that helps, David.

	NamePros Account Upgrade	Forum Sponsorship
	Take advantage of our upgraded membership levels (2 levels to choose from) so you can have MORE active sales threads, Custom Titles, A Directory Listing, Invisible Mode, Message Tracking, And MORE!

06-27-2004, 06:29 PM	#2 (permalink)
Mr. Websites Senior Member Join Date: May 2004 Location: Toronto Posts: 2,308	I doubt that's possible, but it's a smart marketing move.

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)