Hi,
I have a multi-site installation with roughly 20 sub-sites and recently i’ve been having some issues with spam hacks (routing blog posts to some casino site, etc), and this is only happening on the sub-site I have the enfold installed. Is there anything I can do or check?
The SQL that seems to be getting injected is on the site with the Enfold theme installed under a table called (Client_Data_Run) – I’ve deleted this entry, but the next day it returned. If you could maybe help point me in the right direction that this could be happen (any files within) please let me know!
Thank you so much.
-M
I also ran a scanner, and I seem to get an alert from the file /themes/enfold/framework/php//function-set-avia-ajax.php
which might make since since they are using a slug by redirecting certain parts of the pages within that theme to spam/ad. Anything I can do to this file? Thanks
Hi!
I’ll mark this thread for Kriesi. Personally I’m not aware of a code vulnerability but maybe he can find something.
Best regards,
Peter
Hi!
I am also not aware of any problems. To my knowledge there are no reports about any issues and an expert also checked our themes some time ago against any hacks.
Which scanner are you using and what exactly does it say about the file? The critical functions within that file are all secured with wordpress “check_ajax_referer” function so only logged in users with access to the backend, a valid wordpress session and a nonce-key for the function to execute can use them…
Best regards,
Kriesi