Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
While I was doing some cleaning up on my site I noticed that some comments that had been published (and approved by myself) had included a paragraph and a link back to a site that I had not seen earlier. For some reason, it only appears when you're editing a comment.
Essentially, spammers are using "clean-url" class="install" in a div that surrounds their spam content. On further investigation, Black Hat spammers are well aware of this bug in Drupal and are exploiting it left and right: http://www.blackhatworld.com/blackhat-seo/black-hat-seo/268078-free-meth...
Comments
Comment #1
Anonymous (not verified) CreditAttribution: Anonymous commentedPlease see http://drupal.org/node/101494 for this security report.