Avast community forum
Home
Help
Search
Login
Register
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
Again WordPress issues and other vulnerability...
« previous
next »
Print
Pages: [
1
]
Go Down
Author
Topic: Again WordPress issues and other vulnerability... (Read 1190 times)
0 Members and 1 Guest are viewing this topic.
polonus
Avast Überevangelist
Probably Bot
Posts: 33902
malware fighter
Again WordPress issues and other vulnerability...
«
on:
July 23, 2016, 02:50:51 PM »
Found the malware mentioned in the vxvault dot net list:
https://www.virustotal.com/en-gb/url/586e01601ab9316faf75f77060f6dfbb5d34c76737fb42c342422e7f9ecc9d9a/analysis/
Seems the file is no longer there:
https://www.virustotal.com/en-gb/file/f18ede96c28ff59863000a644d54b381f63c78167d2200d9dbd35008463a0741/analysis/1469212052/
Site is blacklisted by mnemonic secure DNS / mnemonic.no
We get 404 not found.
There are some issues the site may be open to infection: WordPress Version
4.3.5
Version does not appear to be latest 4.5.3 - update now.
Retirable jQeury: -http://reikitg.ru
Detected libraries:
jquery-migrate - 1.2.1 : -http://reikitg.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
jquery-migrate - 1.2.1 : -http://reikitg.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
jquery - 1.11.3 : -http://reikitg.ru/wp-includes/js/jquery/jquery.js?ver=1.11.3
Info: Severity: medium
https://github.com/jquery/jquery/issues/2432
http://blog.jquery.com/2016/01/08/jquery-2-2-and-1-12-released/
3 vulnerable libraries detected
C-Status and SRI hash issues:
https://sritest.io/#report/6000d38e-63ea-4ef5-b0e0-0953158907d0
This comes blocked by Bitdefender's TrafficLight: -http://getsocialbuttons.xyz/get-social.js
Consider:
http://www.domxssscanner.com/scan?url=http%3A%2F%2Freikitg.ru
Also see:
http://www.domxssscanner.com/scan?url=http%3A%2F%2Fgetsocialbuttons.xyz%2Fget-social.js
and how it is connected to google sharethis and pinterest
polonus
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.
Use NoScript, a limited user account and a virtual machine and be safe(r)!
Print
Pages: [
1
]
Go Up
« previous
next »
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
Again WordPress issues and other vulnerability...