Infected security page?
İhsan Doğan
ihsan at opencsw.org
Sun Oct 16 19:41:17 CEST 2016
Am 16.10.2016 um 13:34 schrieb Dagobert Michelsen:
>> one user on IRC reported that there is some javascript being injected from our security page (https://www.opencsw.org/security/)
>>
>> The javascript reads:
>>
>> <a href="http://www.jolietta.com/">jolietta online casino</a></div><script type="text/javascript">document.getElementById("8e4b83".split("").reverse().join("")).style.display = "none"</script>
>>
>> It’s visible in source code, but not displayed with javascript enabled.
>>
>> Can someone please take a look? I don’t seem to have access to www (if I should have, just drop me a note.)
>
> I removed the snippet, it looks like it was done by incection of Trygve account:
>
> For now I also demoted all „old“ maintainer accounts in Mantis.
Dago & Juraj: Thanks for spotting and fixing the issue.
Probably we should update once our Wordpress installation. It's already
running for years without maintenance.
Ihsan
--
ihsan at dogan.ch http://blog.dogan.ch/
More information about the maintainers
mailing list