← Back to blog home

Posts Tagged ‘injection’

Weird javascript / cdata in e-mail fields on wordpress blog possible xss or injection

06 Nov

So I started noticing odd code in the e-mail fields of the comments on my wordpress blog recently and I was certain it was some sort of injection or cross site scripting attempt. It turns out it's not anything like that. It was just the email obfuscation feature of cloud flare. So if you're reading this because you are seeing similar on your wordpress blog in the e-mail fields of your comments and you're using Cloud Flare. Go to Cloud Flare and turn off E-mail address obfuscation under security settings. Problem solved.

Read the rest of this entry »