Weird entry in review comments

New Member Joined: Jun 10, 2004 Posts: 23

I got the following text entry as a comment in almost every review (module) on my site.

Quote:

acne scarairlineseating disorderanavar bdsmcheap cigaretteskin carecarisoprodol italian charmsitalian charms cheap cigarettepoker chryslerbasketball bettingcontact lensgirl clothingrouletterolexhawaii weddingstexas holdemair purifierstexas holdemrolexjordan shoesreplica watcheslingeriescar loanlorcet texas holdemmortgage rates support stockingdidrexCelexamortgage rates paxilphenterminepremproLive Psychic hair careFishing Rod pain reliefbodybuilding sandalscellulitisflasherscosequin cheerleadersskin carereplica sunglassescar audio swingerspiercingTarot Readingtatoo teen analcheap hotelscruise dealairlines vicodinlas vegas hotelswine basketDivorce Lawyer enematexas holdemclothingtexas holdemtexas holdemreplica watches shampoohair careshampooreplica watcheshair care shampoo

What the hell is this?
Is this done with some form of injection?
There was no name (even anonymous) as a userid.

I have replace two lines of code in index.php in the review module
In function preview_review

Code:

//$text = stripslashes(check_html($text, ""));


    $text = stripslashes($text);

and in function send_review

Code:

      $text = stripslashes(Fixquotes(urldecode(check_html($text, ""))));

Because I couldn't use ANY Html tags at all.

I've deleted the entries from the database. Any ideas?
Thanks...

I'm using Nuke 7.5, latest patches and Sentinel 2.3

Posted: Sat Jun 11, 2005 4:02 pm

There was another topic about the reviews comments.
Did you read this ?
Is this yours ?
Posted by on 2005-06-08 03:23:57

[ Only registered users can see links on this board! Get registered or login! ]

Posted: Sat Jun 11, 2005 11:20 pm

No it wasn't but thanks for the heads up! Smile