0%

又被黑了

个人原因,很久没有关注网站。近日收到博友留言 ,网站仍然会莫名其妙跳转。今日一看果不其然,网站被跳转到了hellofromhony[.]com

万能的Google查找,发现是Yuzo Relate Post插件的Bug(其实真的蛮好用的插件),导致黑客在WP_Option中插入非法的javascript跳转到上述站点

插件作者目前关闭了插件,并提供的解决方案,表示日后会提供修正的插件。修正方法如下:

– Remove / Uninstall the plugin immediately. 立即卸载插件
– Within your database go to the wp_options table and look for the value yuzo_related_post_options delete that record. 删除
**`
yuzo_related_post_options` 这个wp_option**
– Do not delete the table of visits wp_yuzoviews, this does not influence the problem.
Soon I will send an improved version of Yuzo for all users.

总结:插件稳定的话,千万不要乱更新,也及时关注自己网站状况。