« previous next »
Pages: [1]   Go Down

Author Topic: This site has WP issues - arras bugs - is the site itself suspicious?  (Read 1396 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33900
  • malware fighter
This site has WP issues - arras bugs - is the site itself suspicious?
« on: August 14, 2012, 08:38:16 PM »
Stumbled upon this on VW: http://zulu.zscaler.com/submission/show/543b6d556c9fd992c4361bee371ecfbf-1344967969
See: http://urlquery.net/report.php?id=129778
Site has WP theme arras flaws, arras theme is an present security minefield, read: http://design.j5mc.org/?tag=exploits (link author OMG Hax)
this also is incomplete code: thepcsecurity dot com/wp-content/plugins/wp-spamfree/js/wpsf-js.php  and suspicious
But apparently after one hour the unknown hrml malware there has been closed,
This website is not secure in sofar, that the full version number of the server software is being transmitted to the world.
Also through the "X-Powered-By" HTTP Header" the website gives away that dynamical content is being generated.
Also bad practice. Website also makes use of tracking Pixel  (1 x 1 px)

polonus
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »