Malicious scripts found

  • Resolved jglazer63

    (@jglazer63)


    8 months ago

    Someone installed this plugin and it created malicious scripts in my site that caused google to reject it for ads.

    The code in question looked like this:

    _e09a06.src = _68f979 + _36d4bb + _5d2c3c + _7ef1d9 + _6ed10f + _560a88;

    There were many instances of stuff like this.

    Removing the plugin resolved the issue.

Viewing 1 replies (of 1 total)
  • Plugin Author Diana Burduja

    (@diana_burduja)

    Could you define who is “someone”? How did this “someone” get access to your admin in order to install a plugin?

    The plugin has the explicit purpose to add CSS/JS/HTML codes to your website. If someone gained admin access to your website without your consent, then the JS code could’ve been added in any number of ways, for example by editing the files through the “WP Admin -> Appearance -> Theme Editor” page, or by installing any other number of open-source plugins that lets you add JS codes to the website.

    I’d advise you to go through the server’s log files and search for the steps that could lead to someone to get access to your admin.

Viewing 1 replies (of 1 total)
  • The topic ‘Malicious scripts found’ is closed to new replies.