Help – P0rn Links on my website & now timthumb .bahhh

| August 17, 2011 | 3 Comments

Imagine missing out on  $$$ just because suddenly you realise your website is bad  and hosting p0rn links. Thats what happened to me recently , i found out the hard way  when some of the links got recorded on Google cache  and a advertiser refused to place advertisements on the blog.

Bad links on my wordpress website

The links were no longer present but the damage was done, i could not  know what had happened but most possibly  the ftp login details were hacked  and the hacker had in out bad code to generate p0rn links on my site . Since i had recently  changed the hosting etc  the links were no longer present.

No hacked themes

Dodgy WordPress themes

Did a bit of research and found out some good advice check the footer and the index html via editor i your word press install for may bad scripts. You can also download the WP-Security-Scan plug-in to check you file permissions. And yes dont download themes from dodgy places  as the scripts might be hacked to generate bad links on your website.

Here is an example that might give you some insight  and this –> wordpress p0orn links might help as well

Update from timthumb hack

Just as i clean up one bad theme  the timthumb hack striked one of my blogs  and messed it up again .Found out that tim thumb  was used by heaaaappps of blogs  as this script is used by some of the most popular  word press theme makers on the internet

So which theme plugins   got affected by the timthumb.php hack

Woo themes – http://www.woothemes.com/2011/08/timthumb-security-flaw-patch/

Wpzoom themes – http://www.wpzoom.com/forum/viewtopic.php?f=21&t=5123

 

 

 

  1. Minimo
  2. Polished
  3. Minimal
  4. nebula
  5. TheCorporation
  6. TheStyle
  7. TuaranBlog
  8. striking
  9. MyCuisine
  10. AskIt
  11. Webly
  12. Aggregate
  13. TheSource
  14. reviewit
  15. kelontongfree
  16. Mentor
  17. SimplePress
  18. journalcrunch
  19. ecobiz
  20. Magnificent
  21. timthumb.php
  22. Olympia
  23. kingsize
  24. Chameleon
  25. DelicateNews
  26. videozoom-v2.0-original
  27. videozoom
  28. Envisioned
  29. twicet
  30. u-design
  31. genoa
  32. OptimizePress
  33. Modest
  34. mocell
  35. ephoto
  36. Theme
  37. InReview
  38. lightpress
  39. hostme
  40. PersonalPress
  41. Cadca
  42. arras
  43. tiwinoo_v3
  44. MyProduct
  45. sc4
  46. InterPhaseTheme
  47. InStyle
  48. LightBright
  49. TheProfessional
  50. mnfst
  51. freshnews
  52. ArtSee
  53. Boutique
  54. eStore
  55. Avenue
  56. twentyten
  57. XSWordPressTheme
  58. adcents
  59. Nova
  60. MyPhoto
  61. eGallery
  62. Striking_Premium_Corporate
  63. default
  64. Lycus
  65. manifesto
  66. cold
  67. DynamiX
  68. tarnished
  69. Nyke
  70. linepress
  71. DJ
  72. adria
  73. zimex
  74. peano
  75. ElegantEstate
  76. delight
  77. kelontong-free
  78. duotive-three
  79. SobhanSoft_Theme
  80. PureType
  81. yamidoo_pro
  82. vulcan2.1
  83. eGamer
  84. Wooden
  85. peritacion
  86. AmphionPro
  87. trinity
  88. dandelion_v2.6.3
  89. Juggernautgrande
  90. juggernaut-theme
  91. BlackLabel_v1.1.2
  92. Feather
  93. reviewit1
  94. zinepress_v1.0.1
  95. tribune
  96. photoria
  97. vilisya
  98. DailyNotes
  99. Basic
  100. minerva
  101. anthology_v1.4.2
  102. ModestTheme
  103. purevision
  104. parquet
  105. framed-redux
  106. eceramica
  107. InterPhase
  108. epsilon
  109. Striking
  110. thedawn
  111. peava
  112. Newspro
  113. telegraph
  114. averin
  115. telegraph_v1.1
  116. Memoir
  117. NewsPro
  118. CircloSquero
  119. vassal
  120. maxell
  121. 13Floor
  122. wpanniversary
  123. OnTheGo
  124. Glider
  125. mohannad-najjar222
  126. mohannad-najjar2
  127. arthemia
  128. tuufy7
  129. photoframe
  130. beach-holiday
  131. blacklabel
  132. cadabrapress
  133. snapwire
  134. bizpress
  135. themesbangkoofree
  136. TOA
  137. D4
  138. eNews
  139. vulcan
  140. overtime
  141. rockwell_v1.0
  142. vicon
  143. wideo
  144. CherryTruffle
  145. mio
  146. rttheme13
  147. Linepress
  148. DeepFocus
  149. advanced-newspaper202
  150. OptimusPrime
  151. Quadro
  152. Lumin
  153. minima
  154. identity
  155. U-design.v1.1.2_hkz
  156. KP
  157. Petra
  158. services
  159. 13FloorTheme.php
  160. BD
  161. PolishedTheme
  162. 13FloorTheme
  163. kiwinho
  164. graphix
  165. jerestate
  166. centro
  167. corage
  168. Reporter
  169. TheTravelTheme
  170. XSBasico
  171. openhouse
  172. seosurfing1
  173. bluebaboon
  174. Newspro-2.8.6
  175. nd
  176. zoralime
  177. GrupoProbeta
  178. eBusiness
  179. purplex
  180. kitten-in-pink
  181. FashionHouse
  182. WhosWho
  183. Deviant
  184. Bold
  185. BusinessCard
  186. EarthlyTouch
  187. GrungeMag
  188. LightSource
  189. Simplism
  190. TidalForce
  191. Glow
  192. Influx
  193. StudioBlue
  194. jpmegaph
  195. redina
  196. tritone
  197. dandelion_v2.5
  198. Bluesky
  199. ColdStone
  200. silveroak
  201. newspro
  202. GamesAwe
  203. caratinga.net
  204. SimplePressTheme
  205. MyResume
  206. MyApp
  207. theme
  208. bigcity
  209. dandelion_v2.6.1
  210. chronicle
  211. cuizine
  212. thesis_18
  213. advanced-newspaper_new
  214. Event
  215. wpbedouine
  216. rt_affinity_wp
  217. arry12
  218. backup-TheStyle
  219. ExploreFeed
  220. zzzzzzzzz
  221. Bluemist
  222. Hermes
  223. cleartype_v1.0
  224. polariswp
  225. Chameleon 1.6
  226. sniper
  227. adena
  228. ariela
  229. FreshAndClean
  230. wp-creativix

Plugin Affected :

 

The list of WordPress plugins that include a vulnerable version of TimThumb (pre TimThumb version 1.34).

 

  1. portfolio-slideshow-pro
  2. wp-mobile-detector
  3. a-wp-mobile-detector
  4. igit-related-posts-with-thumb-images-after-posts
  5. dukapress
  6. verve-meta-boxes
  7. db-toolkit
  8. logo-management
  9. wp-marketplace
  10. islidex
  11. aio-shortcodes
  12. category-grid-view-gallery
  13. WPFanPro
  14. igit-posts-slider-widget
  15. wordpress-gallery-plugin
  16. cms-pack
  17. Premium_Gallery_Manager
  18. dp-thumbnail
  19. placid-slider
  20. nivo-slider
  21. photoria
  22. LaunchPressTheme
  23. kc-related-posts-by-category
  24. journalcrunch
  25. download-manager
  26. wordpress-thumbnail-slider
  27. sugar-slider
  28. optimizepress
  29. Vslider plugin

 

Links that help

http://blog.sucuri.net/2011/08/timthumb-php-vulnerability-not-only-affecting-themes-plugins-too-vslider.html

 

 

 

 

 

 

 

 

Share this:
Share this page via Email Share this page via Stumble Upon Share this page via Digg this Share this page via Facebook Share this page via Twitter

Tags: , ,

Category: Blogger Tools, Hackers, Hosting, Internet, web hosting, wordpress

About the Author ()

JJay blogs on Technology related products ,websites, SEO, Social Media and blog promotion. JJay also writes articles for Stock market , Finance and business blogs and websites.

Comments (3)

Trackback URL | Comments RSS Feed

  1. Id should talk with you here. Which is not some thing I usually do! I like reading an article which will make people believe. Also, thanks for allowing me to comment!

  2. new york self storage says:

    Thanks for ones marvelous posting! I definitely enjoyed reading it, you will be a great
    author. I will be sure to bookmark your blog and will eventually come back later
    on. I want to encourage yourself to continue your great
    work, have a nice afternoon!

  3. money market vs savings says:

    bookmarked!!, I reallү liƙe yߋur website!

Leave a Reply to new york self storage Cancel reply

Your email address will not be published. Required fields are marked *