COMMUNITY FORUM

Keyword
  1. Forum
  3. K2 Community Forum
  5. English K2 Community
  7. Javascript in itemtext, hacked?

Javascript in itemtext, hacked?

  • Odin Mayland
  • Odin Mayland's Avatar Topic Author
  • Offline
  • Platinum Member
More
8 years 1 month ago - 8 years 1 month ago #156856 by Odin Mayland
Javascript in itemtext, hacked? was created by Odin Mayland
All my k2 items now have the following script inserted in the itemfulltext.

I have confirmed that the code is not in here: components/com_k2/templates/default/item.php
I do not have any overrides.
<!-- K2 Plugins: K2BeforeDisplayContent -->
	  
	  
	  	  <!-- Item text -->
<div class="itemFullText">
	  	<script language="Javascript">

			var br ='<br>';
			var xbr ='<br/>';

			var div ='<div>';
			var span ='<span>';
			var p ='<p>';

			var i ='<i>';
			var u ='<u>';
			var s ='<s>';
			var b ='<b>';

			var endi ='</i>';
			var endu ='</u>';
			var ends ='</s>';
			var endb ='</b>';
			
			var endp ='</p>';
			var enddiv ='</div>';
			var endspan ='</span>';

			var a ='<a href="###url###">';
			var enda ='</a>';
			
			</script>

Example k2 item: www.icd10monitor.com/enews/item/1676-icd-10-pre-bill-auditing-a-growing-area-of-concern

K2 v2.6.7
Joomla! 2.5.27 (unable to upgrade)

***
The issue is that this code is showing in facebook when the page is shared.
Last edit: 8 years 1 month ago by Odin Mayland.

Please Log in or Create an account to join the conversation.

  • Krikor Boghossian
  • Krikor Boghossian's Avatar
  • Offline
  • Platinum Member
More
8 years 1 month ago #156969 by Krikor Boghossian
Replied by Krikor Boghossian on topic Javascript in itemtext, hacked?
Is this code in the item's full text or is generated from a plugin?
I can see that you cleaned that specific item.
JoomlaWorks Support Team
---
Please search the forum before posting a new topic :)

Please Log in or Create an account to join the conversation.

  • Odin Mayland
  • Odin Mayland's Avatar Topic Author
  • Offline
  • Platinum Member
More
8 years 1 month ago - 8 years 1 month ago #157019 by Odin Mayland
Replied by Odin Mayland on topic Javascript in itemtext, hacked?
I just took over this poorly built site. I had to disable each plugin to find the one that was injecting this code.

It had nothing to do with K2.

Thanks
Last edit: 8 years 1 month ago by Odin Mayland.

Please Log in or Create an account to join the conversation.

  • Krikor Boghossian
  • Krikor Boghossian's Avatar
  • Offline
  • Platinum Member
More
8 years 1 month ago #157020 by Krikor Boghossian
Replied by Krikor Boghossian on topic Javascript in itemtext, hacked?
Just being curious Jeff, which plugin was it (if you are at liberty to disclose this) ?
JoomlaWorks Support Team
---
Please search the forum before posting a new topic :)

Please Log in or Create an account to join the conversation.

  • Odin Mayland
  • Odin Mayland's Avatar Topic Author
  • Offline
  • Platinum Member
More
8 years 1 month ago #157024 by Odin Mayland
Replied by Odin Mayland on topic Javascript in itemtext, hacked?
"Content - Embed Script" by Vladislav Galyanin

Please Log in or Create an account to join the conversation.

  • Krikor Boghossian
  • Krikor Boghossian's Avatar
  • Offline
  • Platinum Member
More
8 years 1 month ago #157026 by Krikor Boghossian
Replied by Krikor Boghossian on topic Javascript in itemtext, hacked?
Thanks Jeff,

FYI, you are using an older version of K2 but this snippet might help you github.com/getk2/k2/pull/311/commits/395d0a70f8595262e69f6449c97011e163fdbcc4
JoomlaWorks Support Team
---
Please search the forum before posting a new topic :)

Please Log in or Create an account to join the conversation.

  1. Forum
  3. K2 Community Forum
  5. English K2 Community
  7. Javascript in itemtext, hacked?

Powered by Kunena Forum