Title: Is the plugin exploited? Last modified: August 22, 2016 --- # Is the plugin exploited? * Resolved [Dan14](https://wordpress.org/support/users/dan14/) * (@dan14) * [11 years, 4 months ago](https://wordpress.org/support/topic/is-the-plugin-exploited/) * There is a spam referrals from Russia from ecXnXm.cX (replace the x with o). I discovered the following info about this spam: * “It came to our attention that the spammer is exploiting Google Analytic publisher codes and a few free WP plugins that have not been updated (one is a very famous SEO plugin which has not been updated for quite sometime now, sorry we cannot name them for fear of legal backlash). As a matter of fact, we are using them on this site too”.” * I don’t know which SEO plugin is this but please look into this and see if there are any exploits with your plugin. * [https://wordpress.org/plugins/all-in-one-seo-pack/](https://wordpress.org/plugins/all-in-one-seo-pack/) Viewing 6 replies - 1 through 6 (of 6 total) * Thread Starter [Dan14](https://wordpress.org/support/users/dan14/) * (@dan14) * [11 years, 4 months ago](https://wordpress.org/support/topic/is-the-plugin-exploited/#post-5590907) * I just found out is not you (that famous SEO plugin) but still look into possible exploits please. * Thread Starter [Dan14](https://wordpress.org/support/users/dan14/) * (@dan14) * [11 years, 4 months ago](https://wordpress.org/support/topic/is-the-plugin-exploited/#post-5590908) * At least I hope so. It is very frustrating. * Plugin Support [Steve M](https://wordpress.org/support/users/wpsmort/) * (@wpsmort) * [11 years, 4 months ago](https://wordpress.org/support/topic/is-the-plugin-exploited/#post-5590910) * Hi Dan, * As long as you download All in One SEO Pack from the WordPress plugin repository then it is free from viruses and spam. WordPress scan plugins in the repository so that users can be assured when they install them. * Thread Starter [Dan14](https://wordpress.org/support/users/dan14/) * (@dan14) * [11 years, 4 months ago](https://wordpress.org/support/topic/is-the-plugin-exploited/#post-5590915) * Hi spmart, thank you for your quick reply. I have downloaded it safely as you said but I am very concerned with this new spammer that goes around. You can read more about here: [http://www.cradlecloud.com/ban-block-econom-co-spam-referrals/](http://www.cradlecloud.com/ban-block-econom-co-spam-referrals/) * In the comments section is mentions there is an exploit of SEO plugin. This is why I want to confirm with you that there are no exploits and whether it is worth double-checking. * [Peter Baylies](https://wordpress.org/support/users/pbaylies/) * (@pbaylies) * [11 years, 4 months ago](https://wordpress.org/support/topic/is-the-plugin-exploited/#post-5590928) * Hi Dan14, * There is no exploit here, spam referrals all take place at the webserver level, which is why the instructions for preventing this involve editing your .htaccess file or otherwise changing your webserver configuration; [here are the relevant instructions in the WordPress Codex](http://codex.wordpress.org/Combating_Comment_Spam/Denying_Access#Deny_Access_Referrer_Spammers), there are no plugin vulnerabilities involved here. * Thread Starter [Dan14](https://wordpress.org/support/users/dan14/) * (@dan14) * [11 years, 4 months ago](https://wordpress.org/support/topic/is-the-plugin-exploited/#post-5590979) * Thank you for the links and your confirmation Viewing 6 replies - 1 through 6 (of 6 total) The topic ‘Is the plugin exploited?’ is closed to new replies. * ![](https://ps.w.org/all-in-one-seo-pack/assets/icon.svg?rev=2443290) * [All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic](https://wordpress.org/plugins/all-in-one-seo-pack/) * [Frequently Asked Questions](https://wordpress.org/plugins/all-in-one-seo-pack/#faq) * [Support Threads](https://wordpress.org/support/plugin/all-in-one-seo-pack/) * [Active Topics](https://wordpress.org/support/plugin/all-in-one-seo-pack/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/all-in-one-seo-pack/unresolved/) * [Reviews](https://wordpress.org/support/plugin/all-in-one-seo-pack/reviews/) ## Tags * [referral](https://wordpress.org/support/topic-tag/referral/) * 6 replies * 3 participants * Last reply from: [Dan14](https://wordpress.org/support/users/dan14/) * Last activity: [11 years, 4 months ago](https://wordpress.org/support/topic/is-the-plugin-exploited/#post-5590979) * Status: resolved