1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

WARNING about All-In-One-Seo-Pro Version uploaded here

Discussion in 'BlackHat Lounge' started by mikie46, Nov 29, 2010.

  1. mikie46

    mikie46 Jr. VIP Jr. VIP

    Joined:
    Aug 6, 2008
    Messages:
    1,454
    Likes Received:
    1,102
    I cant find the damn thread but its here somewhere.

    I want to warn those who downloaded all-in-one-seo the pro version from here to be on the lookout for foreign code injected into this module.

    If you installed this plugin you should load up your index page and view the source code. Go to the end of the page. Almost at the end you will see the following;

    Code:
    <noscript><a href="http://www.luminous-solutions.net">SEO services</a></noscript>
    You will need to remove this line. Its no supposed to be there.

    Open up the file; all_in_one_seo_pack.php in the all-in-one-seo-pro-pack directory and remove the above line.

    This is a callback injected into the script
    Also, if you run a markup validation on your pages you will see this;

    Code:
    Line 216, Column 54: document type does not allow element "a" here; missing one of "p", "h1", "h2", "h3", "h4", "h5", "h6", "div", "pre", "address", "fieldset", "ins", "del" start-tag 
    ...oscript><a href="http://www.luminous-solutions.net">SEO services</a></noscript>
    ... another good reason to trash it!

    As a note, i have run this version of all in one have found little if any benefit from the free version.

    Thanks
     
    • Thanks Thanks x 14
    Last edited: Nov 29, 2010
  2. onnoysomoy

    onnoysomoy Newbie

    Joined:
    Jun 15, 2009
    Messages:
    13
    Likes Received:
    0
    Thanks for your warning. But I think Headspace2 is more good than all in one seo free / pro. I used all in one seo before but few days later I found Headspace2 is more functional.
     
  3. mikie46

    mikie46 Jr. VIP Jr. VIP

    Joined:
    Aug 6, 2008
    Messages:
    1,454
    Likes Received:
    1,102
    Problem with headspace is the author doesn't keep it updated. I mean, the last time i checked it was only compatible up to 2.7. Has he finally updated it for 3.x.x?
     
  4. theindiaphile

    theindiaphile Senior Member

    Joined:
    Jul 26, 2010
    Messages:
    830
    Likes Received:
    245
    very good to know. thanks for this!
     
  5. The Scarlet Pimp

    The Scarlet Pimp Senior Member

    Joined:
    Apr 2, 2008
    Messages:
    843
    Likes Received:
    3,222
    Occupation:
    Chair moistener.
    Location:
    Cyberspace
    good advice, check out everything you download to see if it has hidden scripts.
    (no honor amongst thieves, or hackers)
     
  6. sikandar

    sikandar Senior Member

    Joined:
    Mar 15, 2008
    Messages:
    1,127
    Likes Received:
    1,019
    Thanks for the heads up. I checked the version I had. It was free from any such injection
     
  7. Falrish

    Falrish Regular Member

    Joined:
    Jun 28, 2010
    Messages:
    313
    Likes Received:
    97
    Occupation:
    Manager, IT & Purchasing
    Location:
    Canada
    Home Page:
    I checked mine (not the pro) and it has this. Though I cannot find it anywhere in the files...grr...i have line by line analysis.

    found it in seo-booster-pro/seo-booster.php

    CHECK ALL YOUR SEO WORK CODE FOR THIS!!!
     
    Last edited: Nov 29, 2010
  8. lninja

    lninja Newbie

    Joined:
    Apr 7, 2010
    Messages:
    14
    Likes Received:
    5
    Thanks for that post dude. The good news is that I found the same offending code on one of my sites just like you said.... the bad news is that it is from another plugin because I dont have the all-in-one-seo plugin installed so it must be from another plugin. So apparently the miserable cocksucker responsible for this has infected a few more plugins that we are not aware of.... The active plugins I have on my site are Google XML Sitemaps, Gravity Forms, Platinum SEO Pack, SEOPressor UNLIMITED, Simple Google Map, StatPress Reloaded, WordPress Database Backup, WordPress Mobile Pack, wp secure.
     
  9. oguen

    oguen Regular Member

    Joined:
    Dec 12, 2010
    Messages:
    216
    Likes Received:
    32
    Location:
    Europe
    can you offer me accounts from germany? i would be interested, please send me a msgwith prices etc.
    oguen
     
  10. TeamRoyster

    TeamRoyster Regular Member

    Joined:
    Dec 28, 2010
    Messages:
    266
    Likes Received:
    146
    I've found it on the SEOPressor plugin!

    It's in file - wp-content\plugins\seo-pressor\seo-pressor.php

    Check the very bottom of the file.
     
  11. socialdevinfo

    socialdevinfo Junior Member

    Joined:
    Nov 14, 2009
    Messages:
    102
    Likes Received:
    32
    why dont you guys use Yoast plugin .... isn't it much better than all those SEO plugins
     
  12. roamer

    roamer Power Member

    Joined:
    Dec 2, 2008
    Messages:
    500
    Likes Received:
    480
    Occupation:
    Gfx designer, vfx and mgfx
    Location:
    plɹoʍ ǝɥʇ punoɹɐ ƃuıɯɐoɹ
    Sneaky tactics, thanks a lot for the heads up. A lot of the shared softs have foreign code added for the gain of third parties, it's usually not worth it anymore to install them and compromise your assets.