[wwwawww]

I upgraded mysite to 9.9.5 a few days ago,and still the spam comes.
When I went to admin_comments.php.the page automatic redirect to a spam site.
I check the html code of admin_comments.php and found that spammer insert a script(http://bigbigsavings.info/rd.js) in the comment.

Is there any way to solve this problem?

[wwwawww]

I post the admin_comments.php html code as attachment.

when you open it. it will automatic redirect to spam site.

please tell me whether you have fix that and how can I find the patch.thanks.

[ksmetana]

Hi, I have the same problem, please help.....

Quote:

Originally Posted by wwwawww

I post the admin_comments.php html code as attachment.

when you open it. it will automatic redirect to spam site.

please tell me whether you have fix that and how can I find the patch.thanks.

[supernestor]

+1 I have the same problem!

[iamneat1]

Pligg <= 9.9.0 (XSS/LFI/SQL) Multiple Remote Vulnerabilities

you guys might wanna check that our, our PLIGG scripts have lots of vulerabilites =[ ugh. not cool

[coreyvf]

Solution:
The Pligg developers are aware of the issues mentioned in this advisory
and an updated version of Pligg should be available from their website.
All users are encouraged to upgrade their Pligg installations as soon
as possible.

Make sure you guys are using version 9.9.5 not 9.9.0

[wwwawww]

Of course I use 9.9.5.
but the problem remains

[wwwawww]

Quote:

Originally Posted by iamneat1

Pligg <= 9.9.0 (XSS/LFI/SQL) Multiple Remote Vulnerabilities

you guys might wanna check that our, our PLIGG scripts have lots of vulerabilites =[ ugh. not cool

and I dont think it's the same issue

[onlinemarks]

same problem in this file

[pirrer]

I am using Pligg Version: 9.9.5, have same problem 2.....