Forum Replies Created
-
Posts
-
Ok, so I did everything you instructed and it says the theme is up-to-date…at 3.3.1, but I thought there is another update available?
Thank you for your reply. I need to see if I can get some assistance from Godaddy as I tried connecting using Filezilla and it’s not working correctly (will not connect, says the connection is not secure, etc.). Very frustrating.
I did try uploading the file using the File Manager (they have Linux CPanel Hosting I believe) but it didn’t work correctly). I think there might have been a couple of versions of the theme uploaded in the files already.
Are there plans to make it possible for automatic updates to the theme?
Thank you.
I saw there was an update to WordPress. The weird thing is it appears that it was automatically updated (I know some Word Press sites do this, while others don’t. Previous to this WP update, I had to manually update it, which is a bit odd…). The latest WP update hopefully fixed some of the issues that were happening:
WordPress 4.2.3 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately.
WordPress versions 4.2.2 and earlier are affected by a cross-site scripting vulnerability, which could allow users with the Contributor or Author role to compromise a site. This was initially reported by Jon Cave and fixed by Robert Chapin, both of the WordPress security team, and later reported by Jouko Pynnönen.
We also fixed an issue where it was possible for a user with Subscriber permissions to create a draft through Quick Draft. Reported by Netanel Rubin from Check Point Software Technologies.
Our thanks to those who have practiced responsible disclosure of security issues.
WordPress 4.2.3 also contains fixes for 20 bugs from 4.2. For more information, see the release notes or consult the list of changes.
Did another Sitelock scan on our website. Here’s what came up:
Category: Suspicious content Status:active Type:note
Page URL: http://www.ifmarichmond.org/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=2
Note Info: External iframes found : about:blank found on sample pages ( http://www.ifmarichmond.org/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=2 )
Description: We have detected iframes to external urls on your site. While there are legitimate uses for this, it is also commonly used by hackers to insert content into your page. We recommend you check the urls in this iframe and make sure they are a trusted source.
Action:Check the url to make sure it is something you recognize and are ok with some of your traffic being sent there. If you do not recognize it, remove the iframes and links throughout your website.Category: Suspicious content Status:active Type:note
Page URL: http://www.ifmarichmond.org/wp-content/themes/enfold/config-layerslider/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.4.0
Note Info: External link found in javascript : http://support.kreaturamedia.com/faq/4/layerslider-for-wordpress/#group-13&entry-undefined found on sample pages(
http://www.ifmarichmond.org/wp-content/themes/enfold/config-layerslider/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.4.0,http://www.ifmarichmond.org/wp-content/themes/enfold/config-layerslider/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.4.0,http://www.ifmarichmond.org/wp-content/themes/enfold/config-layerslider/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.4.0,http://www.ifmarichmond.org/wp-content/themes/enfold/config-layerslider/LayerSli
der/static/js/layerslider.kreaturamedia.jquery.js?ver=5.4.0 ). The javascript executed starts with :eval(function(p,a,c,k,e,d){e=function(c){return(c<
Description: We have detected external urls after executing javascript found on your pages. Hackers may attempt to hide malicious content by encoding or obfuscating javascript using code functions such as explode or eval. It is also common for 3rd party software/application providers to obfuscate their javascript to attempt to protect their source code.
Action:Check the url to make sure it is something you recognize and are ok with the potential of your traffic being sent there. You can find the URL location of the javascript executing the external link in the detection report output.I noticed in the theme there is a newer version of Layer Slider. Is there going to an update to reflect this? I am very concerned about these problems being found on my client’s website.
Thank you.
I did everything that was recommended and am still seeing the following error:
Reset by peer
Warning: Invalid argument supplied for foreach() in /home/chomifma08/public_html/wp-content/themes/enfold/framework/php/auto-updates/class-pixelentity-theme-update.php on line 49
Recv failure: Connection reset by peer
Warning: Invalid argument supplied for foreach() in /home/chomifma08/public_html/wp-content/themes/enfold/framework/php/auto-updates/class-pixelentity-theme-update.php on line 49Need your assistance. Thank you.
I was informed that several of the files were not only corrupted, but there were some files appeared to have been possibly hacked. I installed Sitelock on the site, though it appears my client needs a heavier-duty version.
Could this be what is happening?
Envato Targeted by DDoS Attack, WordPress Theme Authors Report Major Decline in Sales
If so, do you have a fix or patch coming out? This is very disconcerting!
Thank you.
OK, I spent a couple of hours on the phone with Godaddy. They found a couple of files that were malicious (not good!). I deleted Enfold from WordPress and tried uploading the zipfile in my dashboard, and it wouldn’t let me! I got a very weird error (got a page that said,”Oops that page can’t be found!”). http://www.ifmarichmond.org/wpadmin/update.php?action=uploadtheme 1/1
Godaddy was concerned about uploading the theme via ftp.
I need help uploading the theme. Any documentation you can provide ASAP? My client relies on their website for memberships and is an ecommerce site.
Help!!!
Thanks.
Hi,
I installed Sitelock on the website, and a couple of errors came up that I thought I’d share:
Category: Suspicious content Status:active Type:note
Page URL: http://www.ifmarichmond.org/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=2
Note Info: External iframes found : about:blank found on sample pages ( http://www.ifmarichmond.org/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=2 )
Description: We have detected iframes to external urls on your site. While there are legitimate uses for this, it is also commonly used by hackers to insert content into your page. We recommend you check the urls in this iframe and make sure they are a trusted source.
Action:Check the url to make sure it is something you recognize and are ok with some of your traffic being sent there. If you do not recognize it, remove the iframes and links throughout your website.Page URL: http://ifmarichmond.org
Note Info: Cookies found with the following names : PHPSESSID
Description: We have detected cookies on your site. Cookies are generally used for keeping track of information as a user browses around a site. There is no particular security issue however if you do not recognize a cookie name it may be worth investigating.Do you have a solution to either of these?
Thanks. Valarie
Hi, Andy,
I thought I already deleted an older version of the template (in our file system through Godaddy) and then downloaded the newest version afterwhich I uploaded it through Godaddy (the hosting company we use). I’m wondering if there might still be an older version of the theme still in the files.
I’m going to get ahold of Godaddy and see what’s up.
Thanks for getting back to me. I’ll be back in touch if I need further assistance. Valarie
