Printable View
Hello,
I noticed that my pages are being modified, Javascript is added that calls a script on an off-site server that will load a PDF file without the user's permission. My question is: how can anyone gain access to write to my files? Can it be that I have a virus running on my server? Or maybe my FTP server has been compromised? If that is the case, how can I conform it?
Thanks a lot in advance.
Hi,
Some time ago I witnessed a similar invented, a website of a friend was injected with some html/javascript (can't remember what it did). Long story short I came to the conclusion that a webhost or something in that lines was hacked and the accounts in that server where then injected with the javascript.
So, is your webpage in your own private server or in some webhosting company's server?
Also could you post (or describe) the contents of the javascript and pdf file?
It could be an xss attack which is where some one injects some javascript in to your web site forms. The only way to stop it is to validate, validate and validate some more. The specific prevention techniques depend on the language the site is written in.
Cross site scripting can be nasty
Some more information