-
AuthorPosts
-
July 7, 2015 at 6:47 pm #469901
I’ve been seeing this weird code in my Word Press dashboard ever since I updated my client’s website to Word Press 4.2.2 (also recently updated to the latest version of Enfold):
Recv failure: Connection reset by peer
Warning: Invalid argument supplied for foreach() in /home/chomifma08/public_html/wp-content/themes/enfold/framework/php/auto-updates/class-pixelentity-theme-update.php on line 49Not sure what this is about. Any ideas? Thanks.
July 8, 2015 at 2:31 pm #470288Hi vblaes!
please try to update the theme again (via FTP).
If that does not help you might need to delete all theme files and get a fresh copy from your themeforest account, as there seem to be some corrupted files.Cheers!
AndyJuly 8, 2015 at 3:19 pm #470316Hi, Andy,
I thought I already deleted an older version of the template (in our file system through Godaddy) and then downloaded the newest version afterwhich I uploaded it through Godaddy (the hosting company we use). I’m wondering if there might still be an older version of the theme still in the files.
I’m going to get ahold of Godaddy and see what’s up.
Thanks for getting back to me. I’ll be back in touch if I need further assistance. Valarie
- This reply was modified 9 years, 5 months ago by vblaes.
July 8, 2015 at 3:44 pm #470336Hey!
We will keep the thread open and will wait to hear from you. Until you reply to this thread, it will be on hold :)
Regards,
YigitJuly 12, 2015 at 12:50 am #471921Hi,
I installed Sitelock on the website, and a couple of errors came up that I thought I’d share:
Category: Suspicious content Status:active Type:note
Page URL: http://www.ifmarichmond.org/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=2
Note Info: External iframes found : about:blank found on sample pages ( http://www.ifmarichmond.org/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=2 )
Description: We have detected iframes to external urls on your site. While there are legitimate uses for this, it is also commonly used by hackers to insert content into your page. We recommend you check the urls in this iframe and make sure they are a trusted source.
Action:Check the url to make sure it is something you recognize and are ok with some of your traffic being sent there. If you do not recognize it, remove the iframes and links throughout your website.Page URL: http://ifmarichmond.org
Note Info: Cookies found with the following names : PHPSESSID
Description: We have detected cookies on your site. Cookies are generally used for keeping track of information as a user browses around a site. There is no particular security issue however if you do not recognize a cookie name it may be worth investigating.Do you have a solution to either of these?
Thanks. Valarie
July 12, 2015 at 7:28 am #471955OK, I spent a couple of hours on the phone with Godaddy. They found a couple of files that were malicious (not good!). I deleted Enfold from WordPress and tried uploading the zipfile in my dashboard, and it wouldn’t let me! I got a very weird error (got a page that said,”Oops that page can’t be found!”). http://www.ifmarichmond.org/wpadmin/update.php?action=uploadtheme 1/1
Godaddy was concerned about uploading the theme via ftp.
I need help uploading the theme. Any documentation you can provide ASAP? My client relies on their website for memberships and is an ecommerce site.
Help!!!
Thanks.
July 13, 2015 at 2:54 pm #472471Hey!
It’s the same procedure as with any other theme but we have a video tutorial on how to do that here, http://kriesi.at/documentation/enfold/videos/.
Cheers!
ElliottJuly 13, 2015 at 9:35 pm #472685I was informed that several of the files were not only corrupted, but there were some files appeared to have been possibly hacked. I installed Sitelock on the site, though it appears my client needs a heavier-duty version.
Could this be what is happening?
Envato Targeted by DDoS Attack, WordPress Theme Authors Report Major Decline in Sales
If so, do you have a fix or patch coming out? This is very disconcerting!
Thank you.
July 14, 2015 at 1:42 am #472785I did everything that was recommended and am still seeing the following error:
Reset by peer
Warning: Invalid argument supplied for foreach() in /home/chomifma08/public_html/wp-content/themes/enfold/framework/php/auto-updates/class-pixelentity-theme-update.php on line 49
Recv failure: Connection reset by peer
Warning: Invalid argument supplied for foreach() in /home/chomifma08/public_html/wp-content/themes/enfold/framework/php/auto-updates/class-pixelentity-theme-update.php on line 49Need your assistance. Thank you.
July 14, 2015 at 3:28 pm #473238Hi!
The auto update from the envato api is having some issues at the moment and hopefully will be fixed in the next few days. For now, try to remove the API data in the Theme Updates panel then reset the page. https://kriesi.at/support/topic/very-slow-admin-back-end/#post-469317
Cheers!
IsmaelJuly 17, 2015 at 2:02 am #474642Did another Sitelock scan on our website. Here’s what came up:
Category: Suspicious content Status:active Type:note
Page URL: http://www.ifmarichmond.org/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=2
Note Info: External iframes found : about:blank found on sample pages ( http://www.ifmarichmond.org/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=2 )
Description: We have detected iframes to external urls on your site. While there are legitimate uses for this, it is also commonly used by hackers to insert content into your page. We recommend you check the urls in this iframe and make sure they are a trusted source.
Action:Check the url to make sure it is something you recognize and are ok with some of your traffic being sent there. If you do not recognize it, remove the iframes and links throughout your website.Category: Suspicious content Status:active Type:note
Page URL: http://www.ifmarichmond.org/wp-content/themes/enfold/config-layerslider/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.4.0
Note Info: External link found in javascript : http://support.kreaturamedia.com/faq/4/layerslider-for-wordpress/#group-13&entry-undefined found on sample pages(
http://www.ifmarichmond.org/wp-content/themes/enfold/config-layerslider/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.4.0,http://www.ifmarichmond.org/wp-content/themes/enfold/config-layerslider/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.4.0,http://www.ifmarichmond.org/wp-content/themes/enfold/config-layerslider/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.4.0,http://www.ifmarichmond.org/wp-content/themes/enfold/config-layerslider/LayerSli
der/static/js/layerslider.kreaturamedia.jquery.js?ver=5.4.0 ). The javascript executed starts with :eval(function(p,a,c,k,e,d){e=function(c){return(c<
Description: We have detected external urls after executing javascript found on your pages. Hackers may attempt to hide malicious content by encoding or obfuscating javascript using code functions such as explode or eval. It is also common for 3rd party software/application providers to obfuscate their javascript to attempt to protect their source code.
Action:Check the url to make sure it is something you recognize and are ok with the potential of your traffic being sent there. You can find the URL location of the javascript executing the external link in the detection report output.I noticed in the theme there is a newer version of Layer Slider. Is there going to an update to reflect this? I am very concerned about these problems being found on my client’s website.
Thank you.
July 20, 2015 at 1:23 pm #475770Hey!
please upgrade to Enfold v3.2.3. and try to deactivate all plugins, as one might cause the issue. Did you check your iFrames you are using? and are you sure they are from a safe source?
Cheers!
AndyJuly 20, 2015 at 6:59 pm #476027The one that is on the website says it’s version 3.2 which is what I have.
I downloaded what’s on there, but it says it’s 3.2.3 in the txt file, so I’ll give that a shot. Very confusing.
Please keep this thread open. Thanks. Valarie
- This reply was modified 9 years, 5 months ago by vblaes.
July 21, 2015 at 6:08 am #476315Hi!
As mentioned earlier there has beens some problems on Envatos side so the info on the download page might not have been correct, but the downloaded files should be and if it reads 3.2.3 it is the latest one. Please let us know how you get on with updating to the latest version.
Cheers!
RikardJuly 26, 2015 at 6:59 pm #478766I saw there was an update to WordPress. The weird thing is it appears that it was automatically updated (I know some Word Press sites do this, while others don’t. Previous to this WP update, I had to manually update it, which is a bit odd…). The latest WP update hopefully fixed some of the issues that were happening:
WordPress 4.2.3 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately.
WordPress versions 4.2.2 and earlier are affected by a cross-site scripting vulnerability, which could allow users with the Contributor or Author role to compromise a site. This was initially reported by Jon Cave and fixed by Robert Chapin, both of the WordPress security team, and later reported by Jouko Pynnönen.
We also fixed an issue where it was possible for a user with Subscriber permissions to create a draft through Quick Draft. Reported by Netanel Rubin from Check Point Software Technologies.
Our thanks to those who have practiced responsible disclosure of security issues.
WordPress 4.2.3 also contains fixes for 20 bugs from 4.2. For more information, see the release notes or consult the list of changes.
July 26, 2015 at 10:23 pm #478817Hi!
Solved the problem? Something else you still need?
Regards,
Basilis -
AuthorPosts
- You must be logged in to reply to this topic.