Posted 2 years ago #
Thanks to the new Exploit Scanner we were able to locate on our sites the iframe that is part of the download package of this site map generator plug-in. Shame on you all and thank you to IXwebhosting.com and McAfee Secure Safe Surf for helping with this also.
http://wordpress.org/extend/plugins/google-sitemap-generator/
Posted 2 years ago #
Did you look in the source of your site to be sure the iframe isn't from your own site being hacked or from another plugin bringing in links or content?
Hi,
I'm only using an IFRAME for showing the recent donations :-)
The URL is: http://plugin-info.arnebrachhold.de/donor-list.php
Can you show me the exact error message or the result of the Exploit Scanner? The plugin also NEVER modifies the frontend (it's actually not even active on a normal page load for saving memory) so I doubt it is the source of this error.
I would be glad to assist you in resolving this issue, you can also contact me by mail if you have any questions. (arne AT arnebrachhold de)
Thanks,
Arne
Edit: I've just installed the scanner and indeed it finds the iframe in the plugin, in the same way it finds one in the Akismet plugin for displaying the statistics.
If you don't like this small window which shows the recent donations, you can click on the "Hide this list" link under it and it will never be shown again.
Additionally I want to note that the scanner is very simple (yet). If I would really want to hide this iframe and trick you, I could just create it via Javascript and the scanner would never be able to find it.
This topic has been closed to new replies.
