But that won't clean up the infection. If Blackline was ever activated, it would have infected functions.php in every other functions.php file in the \themes directory.<div><br></div><div><a href="http://wp.org">wp.org</a> needs to provide clean-up instructions - if not an actual clean-up service. Hopefully the Theme wasn't very widespread...</div>
<div><br></div><div>Chip<br><br><div class="gmail_quote">On Fri, Sep 3, 2010 at 10:51 AM, Chris Olbekson <span dir="ltr"><<a href="mailto:chris@c3mdigital.com">chris@c3mdigital.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<font color="#333333"><font size="4"><font face="verdana,sans-serif">I think the best way to alert current users of the theme would be to clean the worm and and put it back in the repository tagged as an update or put a blank theme tagged as an update with a warning that the theme has the worm with instructions on what to do. This way everyone who installed from <a href="http://wp.org" target="_blank">wp.org</a> would get the update notice.<br>
</font></font></font><div class="im"><br><div><span style="font-size:13.3px;font-family:Verdana, Arial, Helvetica, sans-serif"><div style="margin:0 0 8px 0"><p style="margin:0"><br><font color="#003366" face="'arial black', 'avant garde'"><span style="font-size:large"><br>
</span></font></p>
<p style="margin:0"><a href="http://c3mdigital.com" target="_blank"><img style="width:202px;min-height:77px" alt="C3MDigital.com"></a></p></div><a href="http://facebook.com/c3mdigital" style="text-decoration:underline" target="_blank"><img width="16" height="16" alt="Facebook" style="padding:0px 0px 5px 0px;vertical-align:middle" border="0"></a> <a href="http://www.linkedin.com/in/olbekson" style="text-decoration:underline" target="_blank"><img width="16" height="16" alt="LinkedIn" style="padding:0px 0px 5px 0px;vertical-align:middle" border="0"></a> <a href="http://www.google.com/profiles/c3mdigital" style="text-decoration:underline" target="_blank"><img width="16" height="16" alt="Google" style="padding:0px 0px 5px 0px;vertical-align:middle" border="0"></a> <a href="http://twitter.com/chris_olbekson" style="text-decoration:underline" target="_blank"><img width="16" height="16" alt="Twitter" style="padding:0px 0px 5px 0px;vertical-align:middle" border="0"></a> <a href="http://flickr.com/photos/chris_olbekson" style="text-decoration:underline" target="_blank"><img width="16" height="16" alt="Flickr" style="padding:0px 0px 5px 0px;vertical-align:middle" border="0"></a> <a href="http://wordpress.org/support/profile/3629249" style="text-decoration:underline" target="_blank"><img width="16" height="16" alt="WordPress" style="padding:0px 0px 5px 0px;vertical-align:middle" border="0"></a><br>
<img width="1" height="1"></span></div><br><br></div><div><div></div><div class="h5"><div class="gmail_quote">On Fri, Sep 3, 2010 at 10:36 AM, Chip Bennett <span dir="ltr"><<a href="mailto:chip@chipbennett.net" target="_blank">chip@chipbennett.net</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Speaking of emergency calls: how many times have versions 1.0 and 1.1 of this Theme been downloaded?<div><br></div><div>
How are we alerting existing users?</div><div><br></div><div>That's probably the #1 most important consideration right now, isn't it?</div>
<div><br></div><div><font color="#888888">Chip</font><div><div></div><div><br><br><div class="gmail_quote"><br></div></div></div></div></blockquote></div>
</div></div><br>_______________________________________________<br>
theme-reviewers mailing list<br>
<a href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</a><br>
<a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a><br>
<br></blockquote></div><br></div>