Infected security page?

İhsan Doğan ihsan at opencsw.org
Sun Oct 16 19:41:17 CEST 2016


Am 16.10.2016 um 13:34 schrieb Dagobert Michelsen:

>> one user on IRC reported that there is some javascript being injected from our security page (https://www.opencsw.org/security/)
>>
>> The javascript reads:
>>
>> <a href="http://www.jolietta.com/">jolietta online casino</a></div><script type="text/javascript">document.getElementById("8e4b83".split("").reverse().join("")).style.display = "none"</script>
>>
>> It’s visible in source code, but not displayed with javascript enabled.
>>
>> Can someone please take a look? I don’t seem to have access to www (if I should have, just drop me a note.)
> 
> I removed the snippet, it looks like it was done by incection of Trygve account:
> 
> For now I also demoted all „old“ maintainer accounts in Mantis.

Dago & Juraj: Thanks for spotting and fixing the issue.

Probably we should update once our Wordpress installation. It's already
running for years without maintenance.



Ihsan


-- 
ihsan at dogan.ch        http://blog.dogan.ch/


More information about the maintainers mailing list