WordPress worm?

jwcampbe
(@jwcampbe)

14 years, 10 months ago

I don’t really know what the source or type of the problem I’m discussing is. But I’ve found that my own – and several WordPress sites have text hidden in the code – gibberish and links.

(That’s how I discovered this – when I noticed a random site was linking to me – and checked out to see what it was.)

You can see what I’m looking at if you go to:
http://redsminorleagues.com/
http://2parse.com/

Look after the <body> tag, and you find a long list of words and links…

If you go here, you find a random page filled with gibberish:
http://2parse.com/?hfrw=1

Not sure the purpose of this – or what’s going on – but I want to figure out how to get rid of it.

Any ideas?

Viewing 7 replies - 1 through 7 (of 7 total)

whooami
(@whooami)

14 years, 10 months ago

Hi Joe,

when did you upgrade your blog at 2parse to 2.7.1? and what version were you running at the time you upgraded?

important details.

Thread Starter jwcampbe
(@jwcampbe)

14 years, 10 months ago

I generally upgrade within 2 or 3 days of the release, as soon as they notify you within the WordPress admin – I wasn’t really keeping track of dates.

By which I mean – I had whatever version was immediately previous – 2.7.0 I would guess – and I updated shortly after 2.7.1 was released.

Thread Starter jwcampbe
(@jwcampbe)

14 years, 10 months ago

Looking at this thing – it seems like some sort of scheme to increase a site’s links.

The random page that I see was created has:

<meta name=”robots” content=”index, follow”>

Looking through the pages linked to from mine, most of them also have this code – but some don’t.

whooami
(@whooami)

14 years, 10 months ago

gotcha..

javascript injections are pretty commonplace, unfortunately, and not just a wordpress issue.

is redsminorleagues.com your site as well?

Thread Starter jwcampbe
(@jwcampbe)

14 years, 10 months ago

No – one of the pages on that site was linking to mine – which is how I found this whole issue.

I notified the owner – but I don’t think really understood what I was talking about.

How do you eliminate a javascript injection?

whooami
(@whooami)

14 years, 10 months ago

How do you eliminate a javascript injection?

thats a tough question. heres my general advice,

http://wordpress.org/support/topic/271485?replies=5

Thread Starter jwcampbe
(@jwcampbe)

14 years, 10 months ago

Thank you very much.

Viewing 7 replies - 1 through 7 (of 7 total)

The topic ‘WordPress worm?’ is closed to new replies.

WordPress worm?

Tags

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics