Spam Links Injection
-
I’ve just been viewing the HTML source being generated by a WordPress 2.8.6 site that I maintain and noticed a bunch of unexpected spam links appended right at the end. For example:
<style>#tutbylvasya{position: absolute;overflow: auto;height: 0;width: 0}</style><li id=tutbylvasya> <a href="https://www.voice-exp.com/poteen.php?fry=boot-camp">boot camp</a></li><li id=tutbylvasya> <a href="https://www.voice-exp.com/poteen.php?fry=ting-tings">ting tings</a></li><li id=tutbylvasya> <a href="https://www.albanstephen.com/mogul.php?fug=john-patrick-shanley">john patrick shanley</a></li><li id=tutbylvasya> <a href="https://www.ianlee.co.uk/grison.php?sn=barry-fry">barry fry</a></li>
It’s a very similar scenario to the one described here by the maintainer of a Joomla based system:
https://expressionengine.com/forums/viewthread/141554/
Just starting to work through the problem now to see which files may have been affected and identify if the site was compromised via a plugin or part of the core.
Anyone else experienced similar issues?
Viewing 5 replies - 1 through 5 (of 5 total)
Viewing 5 replies - 1 through 5 (of 5 total)
- The topic ‘Spam Links Injection’ is closed to new replies.