Strange gibberish JavaScript in Editor – site hacked?

Decoding that JavaScript “gibberish” reveals that this is a script to open a popup with ads in it after the user clicks somewhere.

The mean part is that these popups won’t be shown if you’re currently logged in. That’s why these scripts often go unnoticed.

Here’s a redacted excerpt:

var t = false;
document.onclick= function(event) {
  if (t) {
    return;
  }
  t = true;  

  var cookie = document.cookie || '';
  if (cookie.indexOf('wordpress_logged') !== -1
      || cookie.indexOf('wp-settings') !== -1
      || cookie.indexOf('wordpress_test') !== -1) {
    return;
  }

  if ( event === undefined) event= window.event;
  var target="target" in event? event.target : event.srcElement;
  var win = window.open('http://...---redacted---', '_blank');
  win.focus();
};

So yes, you should be concerned. There’s a My site was hacked FAQ on WordPress Codex that you should read to take appropriate next steps.

Related Posts:

  1. Add Item to Custom TinyMCE Menu
  2. Close TinyMCE plugin window on click away
  3. Trouble adding JavaScript in visual editor (Sharpspring embed code)
  4. Custom wp.editor.initialize settings ignored
  5. JavaScript && operator in visual editor
  6. Popup box when Clicking on Insert into post button in wordpress
  7. wordpress 4.4 upgrade visual editor bullets select for not selected elements
  8. disable tags on wordpress text editor
  9. How to stop javascript code being broken when going into visual editor
  10. How to use WP switchEditors.switchto(this) JS function in your own script?
  11. Javascript Injection on my WordPress Site
  12. VisualComposer/WPBakery Page Editor: Is any JS event triggered after the Edition pop-in is shown?
  13. Dynamically write in editor with Javascript
  14. How do you use the ? : (conditional) operator in JavaScript?
  15. “Uncaught SyntaxError: Cannot use import statement outside a module” when importing ECMAScript 6
  16. JQuery – $ is not defined
  17. Is it possible to sandbox JavaScript running in the browser?
  18. jQuery: Wait/Delay 1 second without executing code
  19. How to play audio?
  20. How do I test for an empty JavaScript object?
  21. Tallest Unicode character?
  22. How to solve ‘Redirect has been blocked by CORS policy: No ‘Access-Control-Allow-Origin’ header’?
  23. What is the convention in JSON for empty vs. null?
  24. Generating random whole numbers in JavaScript in a specific range?
  25. Parse Error: Adjacent JSX elements must be wrapped in an enclosing tag
  26. Nested JSON objects – do I have to use arrays for everything?
  27. How to find the sum of an array of numbers
  28. JavaScript null check
  29. keep getting “? Something is already running on port 3000” when I do npm start on react app
  30. React Context vs React Redux, when should I use each one?
  31. Regular expression : match either of two conditions?
  32. jQuery AJAX submit form
  33. Difference between this and self in JavaScript
  34. HTML5 Local storage vs. Session storage
  35. Uncaught TypeError: data.push is not a function
  36. Length of a JavaScript object
  37. Expressjs / Node.js – res.redirect() not loading page
  38. Using async/await with a forEach loop
  39. How to check if two arrays are equal with JavaScript?
  40. Vue is not defined
  41. How to remove all listeners in an element?
  42. How do I check if an object has a key in JavaScript?
  43. How to add a “readonly” attribute to an ?
  44. JQuery $(“#content”).append not working
  45. What is the difference between null and undefined in JavaScript?
  46. How to write inside a DIV box with javascript
  47. use Lodash to sort array of object by value
  48. Chrome/jQuery Uncaught RangeError: Maximum call stack size exceeded
  49. Counting words in string
  50. What’s “this” in JavaScript onclick?
  51. how to use react require syntax?
  52. document.getElementById(id).focus() is not working for firefox or chrome
  53. How to get height of div in px dimension
  54. How to get unique values in an array
  55. How to fix Error: listen EADDRINUSE while using NodeJS?
  56. How to allow CORS in react.js?
  57. Only on Firefox “Loading failed for the script with source”
  58. How do you use a variable in a regular expression?
  59. How to embed a youtube playlist with a sidebar
  60. How to add a button dynamically using jquery
  61. .filter is not a function 
  62. Function overloading in Javascript – Best practices 
  63. Wait until flag=true
  64. momentJS date string add 5 days
  65. When is a CDATA section necessary within a script tag?
  66. How to get scrollbar position with Javascript?
  67. where is create-react-app webpack config and files?
  68. “You may need an appropriate loader to handle this file type” with Webpack and Babel
  69. How to create checkbox inside dropdown?
  70. Find a value in an array of objects in Javascript [duplicate]
  71. What does `node –harmony` do?
  72. How to wrap the content of the main tinyMCE editor with extra tags
  73. How to handle malformed response from WP REST API?
  74. Javascript not working?
  75. Can the index.asset.php file be used with the enqueue_block_editor_assets action?
  76. How to remove p / br elements from gutenbergs editor
  77. contact form 7 repeatable fields calculations [closed]
  78. Listening change event of taxonomy term checkboxes in Gutenberg editor
  79. Mouse wheel Auto scroll to anchor [closed]
  80. Adding inline JavaScript encoding issue
  81. a child theme not de-registering a patent javascript file
  82. Customizer JS API: Defining active_callback for a section
  83. Don’t allow JavaScript in the content area
  84. Using javascript on my site to create nested tabs
  85. CDATA removing new line in script tag in wordpress
  86. Get style and script file versions and use them while writing a cache manifest file
  87. Save in localstorage and db and show it later
  88. How to run Javascript popup modal in a loop?
  89. Loading two versions of same JS libary
  90. Error handling for wpdb error – displaying an error message to the user
  91. Load Particles.js into WordPress Website
  92. Proper way of minifiying java script files in wordpress theme
  93. Enqueue concatinated JS file in WordPress
  94. None of the JavaScript works when using wp_editor
  95. JS enqueue path (localhost)
  96. Load and execute javascript from body
  97. WordPress Theme – jQuery JavaScript Library Issue
  98. Script loaders vs wp_enqueue_script
  99. Block pattern conflict with custom block
  100. Use add_action to run a script, but only on the post editor page