Jul 31, 2015
12:21:38pm
12:21:38pm
What I do as a last resort in this type of thing is a grep on the file system
If you're on linux, that is. If you can come up with something unique about the injected link that might be in the code, grep for that. Usually then you can trace it back to where it's getting called.
Sometimes, find the unique searchable value is the problem, though. If the link itself is pulled in dynamically (like from a database), for example, that doesn't really work. Maybe a class on the anchor tag, or a unique wrapper around it, or something like that.
I don't know how your CMS works--is that an option for you? BTW, I'd done extensive development on 3 CMS's, and worked with two others. Currently using TeamSite, but I've also used Plone and Vignette, and had brief interactions with BroadVision and Drupal.
Sometimes, find the unique searchable value is the problem, though. If the link itself is pulled in dynamically (like from a database), for example, that doesn't really work. Maybe a class on the anchor tag, or a unique wrapper around it, or something like that.
I don't know how your CMS works--is that an option for you? BTW, I'd done extensive development on 3 CMS's, and worked with two others. Currently using TeamSite, but I've also used Plone and Vignette, and had brief interactions with BroadVision and Drupal.
- Bio page
- jdub
- Joined
- May 13, 2004
- Last login
- Apr 19, 2024
- Total posts
- 76,434 (17,148 FO)
