See: https://www.virustotal.com/en/url/6f8ac458e3ca9d74d7e40b677ca3efc476178e49f301c16aaf531392baf75f71/analysis/1455052543/
Potentially Suspicious files: 1
/wp-content/plugins/cforms/js/cforms.js
Severity: Potentially Suspicious
Reason: Detected potentially suspicious content.
Details: Detected potentially suspicious initialization of function pointer to JavaScript method fromCharCode __tmpvar414192441 = fromCharCode;
Threat dump: View code see attached image.
Threat dump MD5: 08346B477611E8662600A9C3CA57CBE3
File size[byte]: 17418
File type: ASCII
Page/File MD5: 854FAD63DE55FCE5E04A5849ABE1FE44
Scan duration[sec]: 0.208000
WordPress issues: User Enumeration is possible admin admin :o
Warning Directory Indexing Enabled :o
In the test we attempted to list the directory contents of the uploads and plugins folders to determine if Directory Indexing is enabled. This is an information leakage vulnerability that can reveal sensitive information regarding your site configuration or content.
/wp-content/uploads/ enabled
/wp-content/plugins/ disabled
Directory indexing was tested on the /wp-content/uploads/ and /wp-content/plugins/ directores. Note that other directories may have this web server feature enabled, so ensure you check other folders in your installation. It is good practice to ensure directory indexing is disabled for your full WordPress installation either through the web server configuration or .htaccess.
Retirable code for jQuery:
-http://wyrinc.com
Detected libraries:
jquery-migrate - 1.2.1 : -http://wyrinc.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
jquery - 1.11.3 : (active1) -http://wyrinc.com/wp-includes/js/jquery/jquery.js?ver=1.11.3
(active) - the library was also found to be active by running code
1 vulnerable library detected
Attack detected on this code: -https://www.google.com/recaptcha/api.js?onload=bwpRecaptchaCallback&render=explicit
Blocked by a script blocker there was this link: -http://static.getclicky.com/js
See sources and sinks and where the code will land: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fstatic.getclicky.com%2Fjs
uBlock₀has prevented the following page from loading:
-http://in.getclicky.com/100746374ns.gif
Because of the following filgter
-||in.getclicky.com^
Found in: hpHosts’ Ad and tracking servers • MVPS HOSTS
Security issue on link: Social Networking Community padlock icon
-www.thumblar.com
Alerts (2)
Insecure login (2)
Password will be transmited in clear to -http://www.thumblar.com/index.php?do=/user/login/
Password will be transmited in clear to -http://www.thumblar.com/index.php?do=/user/register/
Infos (1)
Encryption (HTTPS) (1)
Communication is NOT encrypted
Sucuri does not flag a thing :o
polonus (volunteer website security analyst and website error-hunter)