stanof

Thank you. That answers it for me ??

Thank you for all your very quick support and I still believe that your plugin is great, however, it is becoming too time consuming to figure out the small bugs.

I have just installed ShortPixel on this specific website and it works without issues. Although, of course there is a monthly cap for the free version, which for now is fine by me.

I will try EWWW on another website to see if there are the same issues and if not that I will use it there.

Thanks!

When I disable/deactivate your plugin and upload a photo then no error shows up in the console and all works as expected.

I can’t really disable all plugins and start testing that way as lots of the website’s functionality depends on them.

It’s a shame cause I liked the simplicity of your plugin but might need to look at other solutions.

OK, with your plugin enabled, here is everything what the log says (from Chrome) after I upload an image (and progress bar shows 100%:

> XHR finished loading: POST “domain_was_here/wp-admin/async-upload.php”.
> Uncaught TypeError: Cannot read property ‘replace’ of null
Then it repeats this line couple of times:
> XHR finished loading: POST “domain_was_here/wp-admin/admin-ajax.php”.

As for the error details (second line) it seems like there is bunch of functions/calls failing within a file:
load-scripts.php?c=0&load[]=jquery-core,jquery-migrate,utils,plupload,plupload-handlers&ver=8f12009…:40

But it must be an error that the EWWW plugin triggers because when I disable the plugin and upload a photo the same way (via Media > Add New) everything happens as it should, meaning, the thumbnail shows up on the Upload page as well as in the Library.

Thumbnail does not show up on the Add New page when photo is uploaded. On the left side of the row where the progress bar shows there is only the file name, and progress bar in the right. Once it shows 100% all stays that way.

Then I go to the Media Library page and same thing as I described before – no thumbnail and so on.

Tried uploading another image to make sure it was not a fluke, same result:

1) Image is present in the library but without any thumbnail.
2) No data array dump is showing, unlike for images that were uploaded before installing EWWW. But it does show the image size of 3.83MB
3) When I click on this image (file name) in the library then edit/preview of it shows up displaying the image and listing a URL, which when I copy/paste to my browser loads the full image.

I was reading some of the other threads where people have similar issues (images missing or not showing) and I think there is something strange EWWW must be doing with image database storage/mapping because. For example, I have not installed other plugins on the site for long time, only updated everything 7 days ago and all worked perfect. Then installed EWWW and the above issues have started.

I am probably going to look at other similar plugins since I don’ have full confidence it won’t mess with all image DB mapping once I do bulk optimize, I simply cannot risk that.

Thank you.

Hi nosilver4u,

Thank you for your quick response!

I tested the above based on your suggestions and it seemed to work, however, few more issues started to happen:

1) In Media Library (list view) all images display an array dump in the Image Optimizer column and yellow background, stuff like this:
Array
(
[width] => 320
[height] => 140
[file] => 2016/06/galena-cennik-2.jpg
[sizes] => Array
(
[thumbnail] => Array
(
[file] => galena-cennik-2-150×140.jpg
[width] => 150
[height] => 140
[mime-type] => image/jpeg
)
[medium] => Array
(
[file] => galena-cennik-2-300×131.jpg
[width] => 300
[height] => 131
[mime-type] => image/jpeg
)
[featured] => Array
(
[file] => galena-cennik-2-300×100.jpg
[width] => 300
[height] => 100
[mime-type] => image/jpeg
)
)
[image_meta] => Array
(
[aperture] => 0
[credit] =>
[camera] =>
[caption] =>
[created_timestamp] => 0
[copyright] =>
[focal_length] => 0
[iso] => 0
[shutter_speed] => 0
[title] =>
[orientation] => 0
)
)

2) When I uploaded a new image that was on purpose right from the camera (JPEG with big dimension, over 2MB, and 180ppi) directly to the library it looks like it was uploaded, however, no thumbnail was generated and it was not resized or compressed/optimized despite my settings. Also, for the array dump nothing displays, unlike with the older images.

Could you please advise. I don’t want to proceed with bulk optimize or letting website admins start uploading images if I am not sure of the plugin working well.

Thank you very much,

Stan

DJ, thanks for that plugin, will use it!

Sam:

Great question. And you are asking it because there are not many concrete examples to understand it in this thread… unless you are the professional.

I am kind of afraid to now even describe this but I am gonna try anyways:

So “my” hack was that an added script into the functions.php file inside my theme’s folder causes to display a link to a website for cash advances within the content of every post or page. Usually, after the first paragraph.

Searching for that link/domain on Google brought me to this page but all other results showed only websites that are affected by this issue. Simply Google indexed them since that link appears in the content of the sites or robot.txt file.

Based on Google results it seems like there are close 21,000 websites affected by this! So hell, this thread should be a bit more to the point ??

For anyone to see, search Google for “cashadvance2cnls”. I hope it is OK to give that info.

Hope this helps those less professional.

Sorry.

I know half-ways what I am doing in terms of security.

I didn’t read all of your links.

I know the search and replace fixed the symptoms only.

Thank you for advice.

Thank you.

And I just got an email from a client wanting to update and do all that is necessary. I guess they got scared enough.

Sorry for posting the code, I didn’t know. Sorry. But you don’t have to be all over me ??

I was trying to help the community by providing what I deleted from where. I never claimed that fixes the security hole, all I claimed was… well you can read above.

And if a client doesn’t want to pay me to update when I advise then I am not going to keep up with their website for free.

Sorry and thanks ??

Besides, could you be more concrete about “standard URLs for cleaning”.

Jan, what a noble cause but I have to disagree ??

Here is my reason:

I posted this code because that’s how I was able to solve my problem. In comments on a blog post about a similar issue someone posted the code. With that info available, I was able to run “Find and replace” on the whole WP site. And bingo I found where the malicious code was.

And since I was reading this thread I thought it might help someone else the same way because the the guy that started this thread has the same problem as me.

If this is not a good enough reason to post such a code then probably you are right – “There is just never any good reason to post that.”

Not all of us are geeks, so sometimes a concrete example helps a lot ??

WPyogi,
I know the site should be updated but I can only advise. Now, they will probably want to do so ??

Sorry about the code, I didn’t know. But if it doesn’t execute then what is the problem?

Hi guys,

Had the same problem with a client site as “ey3wp” and this is where was the problem:

I would this code at the very top of my functions.php file inside my active theme’s folder:
`<?php $wp_function_initialize = create_function(‘$a’,strrev(‘;)a$(lave’)); $wp_function_initialize(strrev(‘;))

[hacked code removed – please do not post that here]

Taking that out took care of the “cash advance” links being inserted on the fly into the content on every page.

However, there must be a security hole somewhere, so I am not done fighting yet ??

The site runs on WP 3.4 and is hosted on GoDaddy.

Hope this helps.