ADVERTISEMENT
ADVERTISEMENT
minqidev
华人拿手机真是没法看了,一点进文章就跳岀Walmart 字样的网站连接,关都关不了。
4569
22
2017-11-17 17:35:05
这有点像的XSS,这个不好的是,可以偷你的cookie id 和 session id, 应该是嵌入了一些代码, 大概看了以下,怀疑是一些网站广告。。。Chrome和自动拦截这些,但是 iphone的safari似乎没有去拦截
Refused to execute script from 'https://slack.sp1.convertro.com/view/vt/v1/slack/0/cvo.gif?cvosrc=display.adroll.aud_prosp_click&utm_source=adroll&utm_medium=display&utm_content=315928962&utm_campaign=wwh' because its MIME type ('image/gif') is not executable.
3show_i.php?a=39&x=TVRVeE1EazBNemM0TlMwMU1DNHhPVFV1TVRRMkxqRTROdz09&z=29&c=1&target=_top&refer=htttp%3A%2F%2Fforums.huaren.us%2Fshowtopic.aspx%3Ftopicid%3D2233381%26page%3D2:1
Refused to execute script from 'https://sync.1rx.io/usersync2/pulse' because its MIME type ('image/gif') is not executable.
这两个网站都包含 cross domain inject
Refused to execute script from 'https://slack.sp1.convertro.com/view/vt/v1/slack/0/cvo.gif?cvosrc=display.adroll.aud_prosp_click&utm_source=adroll&utm_medium=display&utm_content=315928962&utm_campaign=wwh' because its MIME type ('image/gif') is not executable.
3show_i.php?a=39&x=TVRVeE1EazBNemM0TlMwMU1DNHhPVFV1TVRRMkxqRTROdz09&z=29&c=1&target=_top&refer=htttp%3A%2F%2Fforums.huaren.us%2Fshowtopic.aspx%3Ftopicid%3D2233381%26page%3D2:1
Refused to execute script from 'https://sync.1rx.io/usersync2/pulse' because its MIME type ('image/gif') is not executable.
这两个网站都包含 cross domain inject
初始化编辑器...
到底了
ADVERTISEMENT
Hot Deals
All DealsEZBASICS 面部清洁刷 70% 折扣 - 仅 $20.09!
EZBASICS 离子面部蒸汽机配5件套护肤工具 - 通过Prime购买仅需$31.99 + 结账时额外5%折扣
T.J. Maxx厨房和餐具店 - 强烈推荐
adidas儿童精选商品特卖 – 最高可享70%优惠
Samsung75寸Neo QLED QNX1D 4K HDR智能电视仅售$1549.99,超值优惠和额外福利
adidas 跑步鞋特惠,额外20%折扣
T.J. Maxx 家居礼品促销,低至 $3
GAP 儿童系列假日促销,低至4折再享额外8折
Nike会员促销 – 额外25%折扣
Neiman Marcus 精选美妆促销:低至5折+赠礼
Urban Outfitters會員專屬促銷 - 精選商品立減20%
Eve Lom美妝熱賣:消費滿額贈禮,僅限Bergdorf Goodman
Realcook 17英寸木炭烧烤烟熏炉 - 完美户外烧烤伴侣 享33%折扣
ADVERTISEMENT