muntaindw's Replies | WordPress.org

Forum Replies Created

Viewing 10 replies - 1 through 10 (of 10 total)

Forum: Plugins
In reply to: [Contact Form 7] Auto response email from Contact Form 7 marked as spam in Gmail

muntaindw
(@muntaindw)

6 years, 3 months ago

they like contact form 7 because they can use the confirmation emails to send spam indirectly to their victim. They are sending infected links in the confirmation email which comes from your site.

Forum: Plugins
In reply to: [Contact Form 7] WordPress contact forms being used for indirect spam

Thread Starter muntaindw
(@muntaindw)

6 years, 3 months ago

Okay.

I’ll just go to every single one of the 5 million installations of your form, convince them to give a stranger access to their site, then use the FAQ you linked to fix it for them.

Thank you.

Forum: Fixing WordPress
In reply to: WordPress contact forms being used for indirect spam

Thread Starter muntaindw
(@muntaindw)

6 years, 3 months ago

Instead of this back and forth, maybe this next time:

“Thank you for the information, I will forward it to the plugin developer so they can look into it.”

but I get this passing off of responsibility from two different locations.
https://en.forums.wordpress.com/topic/wordpress-contact-forms-being-used-for-indirect-spam/#post-3427855

“I recommend asking at https://wordpress.org/support/plugin/contact-form-7/#new-post so the plugin’s developers and support community can help you with this.”

Thank you for whatever help you offered, but forgive me if I’m not impressed.

Forum: Fixing WordPress
In reply to: WordPress contact forms being used for indirect spam
Thread Starter muntaindw
(@muntaindw)

6 years, 3 months ago
It’s your software running those sites. It’s akin to letting Microsoft know of a flaw in their software which is causing your laptop to send out spam.

Now that you’re aware of it, it’s on you to contact the plugin developer or however you want to handle it. It’s also the wordpress brand that’s attached to it by having official support forums for that plugin hosted on your site, and you directly benefit from the additional functionality provided for your customers.
- This reply was modified 6 years, 3 months ago by muntaindw.
Forum: Fixing WordPress
In reply to: WordPress contact forms being used for indirect spam

Thread Starter muntaindw
(@muntaindw)

6 years, 3 months ago

It’s not me that needs help.

Whatever.

You’ve been informed of the abuse of your system.

My job is done.

Forum: Fixing WordPress
In reply to: WordPress contact forms being used for indirect spam
Thread Starter muntaindw
(@muntaindw)

6 years, 3 months ago
1. go to one of the contact forms i listed.(or pick one of your choice that’s not listed there.)
2. in the name field, enter a url like http://www.google.com
3. fill out the rest of the form, and submit.
4. check your email and see the link to google.com is fully intact.

if you don’t recognize the problem with this, you need to forward to someone who does.
- This reply was modified 6 years, 3 months ago by muntaindw.
Forum: Fixing WordPress
In reply to: WordPress contact forms being used for indirect spam

Thread Starter muntaindw
(@muntaindw)

6 years, 3 months ago

I don’t know how to be more clear. I don’t use wordpress, i am not associated with it in any way. I don’t want help or troubleshooting how to filter out spam.

I am letting you know your customers are being used as a conduit to spread viruses.

Forum: Fixing WordPress
In reply to: WordPress contact forms being used for indirect spam
Thread Starter muntaindw
(@muntaindw)

6 years, 3 months ago
they’re submitting the spam line and surely infected url in the name field of the contact form and letting the site spam me for them.

I see no reason not to scrub urls from these fields before sending a confirmation email. (edit: or not sending a confirmation at all)

um… addign a “proof of work” check to the form could also help mitigate.
https://en.wikipedia.org/wiki/Proof_of_work
- This reply was modified 6 years, 3 months ago by muntaindw.
- This reply was modified 6 years, 3 months ago by muntaindw.
Forum: Fixing WordPress
In reply to: WordPress contact forms being used for indirect spam
Thread Starter muntaindw
(@muntaindw)

6 years, 3 months ago
```
Hi Dobili ste poklon kartu 957EUR. Isprobajte sreÄ‡u. Idi ovdje: http://bit.do/fqFNM?awixt .,

Your request for a free, no obligation estimate from Bright Side Exteriors has been received. We appreciate your trust in our company!
We will review your information and contact you within one business day to discuss your project. 
We look forward to working with you to make your home more comfortable, convenient and valuable!

Bright Side Exteriors
--
This mail is from http://www.trustbrightside.com//contact-us/
```
https://translate.google.com/?client=firefox-b-1-d&um=1&ie=UTF-8&hl=en&client=tw-ob#view=home&op=translate&sl=auto&tl=en&text=Hi%20Dobili%20ste%20poklon%20kartu%20957EUR.%20Isprobajte%20sre%C3%84%E2%80%A1u.%20Idi%20ovdje%3A%20http%3A%2F%2Fbit.do%2FfqFNM%3Fawixt%20.%2C
Forum: Fixing WordPress
In reply to: WordPress contact forms being used for indirect spam

Thread Starter muntaindw
(@muntaindw)

6 years, 3 months ago

I myself am not familiar with wordpress enough to say, but these are just a few examples of contact forms I’ve received spam from today. I believe they’re all wordpress installations. Knowing how widespread wordpress is, this will probably only get worse.

Viewing 10 replies - 1 through 10 (of 10 total)