cbdilger

I have the same issue as Dan Lockton. I am using WP 2.5.1. Here is the offending code minus the link:

<font style="position: absolute;overflow: hidden;height: 0;width: 0"><a href="https://REDACTED/">office furniture in Bulgaria</a></font>

This is not the first time I’ve had a similar problem, and I’ve been keeping up to date, changing my password when I see the problem, etc. But it keeps happening.

No recent registrations.

Shared hosting, so I can’t provide MySQL logs.

I’m getting more of these “noscript” injections again. I thought the upgrade to 2.3.3 had stopped them, but I just found two more.

I just noticed a very similar embedded spam on a post. I am running WP 2.3.2 on shared hosting so I can’t get MySQL logs, but I will gladly provide other information as needed.

Edit: found another post. Here is the text, minus the link.

<noscript>Questo tipo di Poker e il <a href="https://REDACTED/la-piu-bene-roulette-in-linea-guida.html">roulette in linea</a> gioca preferito nei Caraibi e sulle navi da crociera, in cui ogni giocatore gioca contro</noscript><noscript>Alcohol breath let us for your! Chirping mentioned mosquito <a href="https://REDACTED/group/carlyn8103/web/music-ringtones">music ringtones</a> earlier she did you.</noscript> il banco indipendentemente dagli altri colleghi giocatori.

I just found a post with this code injected with WP 2.2.3. I’m upgrading to 2.3.1 now and have contacted my ISP to see if MySQL logs are available. (Edit: no, logs aren’t available; darned shared hosting.)

Plugins:
Edit Comments 0.3 beta
Filosofo Comments Preview 0.7
Spam Karma 2 2.2 r3

Theme:
extensively hacked version of kubrick

I had the “redirect” problem as well, and the fix described in this thread solved it:

https://www.ads-software.com/support/topic/90062