[Plugin: WP-Polls] Possible Malicious Javascript

(@spaceman-spiff)

I just found that wp-poll includes the following Javascript to my website:

<script src="http://stats.wordpress.com/e-201208.js" type="text/javascript"></script>
	<script type="text/javascript">
	st_go({v:'ext',j:'1:1.2.2',blog:'7943387',post:'0'});
	var load_cmc = function(){linktracker_init(7943387,0,2);};
	if ( typeof addLoadEvent != 'undefined' ) addLoadEvent(load_cmc);
	else load_cmc();
	</script>

And this also breaks the website. When I disabled wp-polls, the code disappears.

http://ww.wp.xz.cn/extend/plugins/wp-polls/

Viewing 2 replies - 1 through 2 (of 2 total)

Thread Starter spaceman-spiff
(@spaceman-spiff)

14 years, 3 months ago

I think I was mistaken. It seems to come with “Jetpack by WordPress.com” plugin. It was suspicious because http://stats.wordpress.com/ doesn’t return anything.

Plugin Author Lester Chan
(@gamerz)

14 years, 3 months ago

Yeap, that is by Jetpack for WordPress Stats not WP-Polls

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘[Plugin: WP-Polls] Possible Malicious Javascript’ is closed to new replies.