<div><font size="2"><font face="tahoma,sans-serif">Cool, thanks guys and I must say this is definitely new way of adding in malicious codes in footer area. Back in March Apple released a patch for similar .TIFF malicious code which was affecting iOS 4.3 <a href="http://nakedsecurity.sophos.com/2011/03/10/update-your-apple-devices-to-ios-4-3-or-risk-malicious-code-attacks/">http://nakedsecurity.sophos.com/2011/03/10/update-your-apple-devices-to-ios-4-3-or-risk-malicious-code-attacks/</a></font></font></div>
<div><font face="Tahoma"></font> </div><div><font face="Tahoma">PS Thanks to Carolina as well :)</font></div><div><font size="2"><font face="tahoma,sans-serif"></font></font> </div><div><font size="2"><font face="tahoma,sans-serif">Time for sleep,</font></font></div>
<div><font size="2"><font face="tahoma,sans-serif">Emil</font></font></div><font size="2"><font face="tahoma,sans-serif"><div><br clear="all"></div></font></font><div><strong>Emil Uzelac</strong> | ThemeID | T: 224-444-0006 | Twitter: @EmilUzelac | E: <a href="mailto:emil@themeid.com" target="_blank">emil@themeid.com</a> | <a href="http://themeid.com/" target="_blank">http://themeid.com</a></div>
<div><font color="#999999">Make everything as simple as possible, but not simpler. - Albert Einstein</font></div><br>
<br><br><div class="gmail_quote">On Sun, Apr 10, 2011 at 4:32 AM, Jon Cave <span dir="ltr"><<a href="mailto:jon@lionsgoroar.co.uk">jon@lionsgoroar.co.uk</a>></span> wrote:<br><blockquote style="margin: 0px 0px 0px 0.8ex; padding-left: 1ex; border-left-color: rgb(204, 204, 204); border-left-width: 1px; border-left-style: solid;" class="gmail_quote">
<div class="im">On Sun, Apr 10, 2011 at 10:20 AM, Andrew Nacin <<a href="mailto:wp@andrewnacin.com">wp@andrewnacin.com</a>> wrote:<br>
> I've closed the ticket and made some preliminary comments. Jon Cave has<br>
> fully decoded it before I've had the chance to -- the end result is loading<br>
> an external XML file to generate as many links as they want in the footer.<br>
> Clever, and slimy as hell.<br>
<br>
</div>After doing all sorts of trickery, like reading itself, it finally<br>
decodes itself to the following.<br>
<br>
$rss = simplexml_load_file('<a href="http://example.com/paydayfooter/payday.xml'" target="_blank">http://example.com/paydayfooter/payday.xml'</a>);<br>
$title = $rss->channel->title;<br>
;echo '';<br>
foreach ($rss->channel->item as $item) {<br>
echo "<a href='".$item->link ."'>".$item->title ."</a> - ";<br>
<div><div></div><div class="h5">}<br>
_______________________________________________<br>
theme-reviewers mailing list<br>
<a href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</a><br>
<a href="http://lists.wordpress.org/mailman/listinfo/theme-reviewers" target="_blank">http://lists.wordpress.org/mailman/listinfo/theme-reviewers</a><br>
</div></div></blockquote></div><br>