BlogEngine.NET showing up in Google search results with "This site may be hacked" warning

Feb 10, 2015 at 11:20 PM
This is what the link points to:
https://support.google.com/websearch/answer/190597?p=ws_hacked&rd=1

Used this as the search:
https://www.google.com/search?q=blog+engines

also shows up when searching "blogengine.net"


Will this affect our own sites search results?
Feb 26, 2015 at 9:46 PM
Edited Feb 26, 2015 at 9:49 PM
How/if it affect users, I don't know, but take a look on content of feed http://www.dotnetblogengine.net/syndication.axd .
You don't have to scroll very far down before you see content that definitely not should be in this feed...
Or if you do a view-source on for example http://www.dotnetblogengine.net/post/Update-3110-With-Security-Patch.aspx , you'll find the same content hidden inside a block with style="display:none".
Mar 1, 2015 at 8:41 AM
Hi StigNygaard,

Good catch!

I see it on line 168 of source code

http://www.dotnetblogengine.net/post/Update-3110-With-Security-Patch.aspx

<div style='display:none'><p>At odd times, the cramping may agree with ... and it goes on


Rtur: Need to delete that line :)
Mar 1, 2015 at 1:26 PM
It looks like some type of spam injection, though I'm hoping it's just sample site content, otherwise makes me wonder if BE in general might have some similar vulnerability.
Mar 10, 2015 at 9:14 AM
WhoIs seems to tell a Danish hosting service is used. By coincidence, this shouldn't be Azero.dk (Andersen IT)?