HTML:Script-inf

Hi
My client has AVAST on his PC and He got HTML:Script-inf when he open page on his website
Any one know how this could get to a server?
I understand this is not a file it is something to do with Data Base

Input would be appreciated

Thanx

Lev

Do you have the URL ? if you do, post it none clickable, like hxxp or wxw

This is commonly down to old content management software being vulnerable, PHP, Joomla, Wordpress, SQL, etc. etc.

Also see, Tips for Cleaning & Securing Your Website, http://www.stopbadware.org/home/security.

Thanx for quick respond

here is the url:
hxxp://tristatechess.com/tournaments/
Is that what you had in mind?

I am not getting any alarm on that URL with my avast! have also scanned it with with online scanners and nothing

Thank you

Just for a my sake how this get transferred?

Just to understand it

And Thanx again

Lev

you mean what it is ?

Cross-site scripting
http://en.wikipedia.org/wiki/Cross-site_scripting

Well I do get an alert on that page and it is weird as the home page for that has zero conventional html script on it other than a javascript redirection/attempt to run another javascript file. See images 1&2.

The site that it attempts to send you to is considered malicious by avast and firefox also alerts on its safe browsing as an attack site, image 3&4.

So your clients site appears to have been hacked and is trying to run a script from a site considered malicious.

Avast isn’t alone in considering the home/default page at that URL to be malicious, http://www.virustotal.com/file-scan/report.html?id=9c7aad09a1075c4fe3cce44e15276b6eae3cf8e571acdccea33fa4a51c399764-1285874048.

you are correct. I get no alarm with Opera but i do if i try IE8 or Chrome