First of all we have to know about the iFrame ..
Just Like an image shows you…
Now here it comes ,what is iFrame Injection..?
It is simple HTML level of attack that can redirect you by clicking from one page to another page.Using IFrame tag, The Attackers injects the malware contain website(links) using Cross site Scripting in popular websites. So if the usual visitors of that popular sites opens the website, it will redirect to malware contain website. Malware will be loaded to your computer, now you are infected.
Some attribute to use iframe is as follows:
1.First of all attacker will find the Vulnerable websites using google dorks.
2. They test the vulnerability by inserting some iframe tag using the url.
3. then insert the Malicious Iframe code inside the webpage.
He can insert this code using the url :
For php webpages :
- So if the clients load page, his system will be infected.