Home How to find the origin of some invasive html?
Reply: 1

How to find the origin of some invasive html?

Arepo
1#
Arepo Published in 2018-01-12 13:19:30Z

I've been working on the site https://founderspledge.com/ and just noticed that if you go to the main page, and open the Chrome console to view the source, there's an element that I certainly didn't put there:

<div class="pub_300x250 pub_300x250m pub_728x90 text-ad textAd
 text_ad text_ads text-ads text-ad-links" style="position: absolute;">.</div>

It also doesn't show up when I run the site's code in localhost, or when I load the page source separately using Chrome's 'View Source' option.

I Googled the div's class list, and the top few hits were from anti-ad blocker software (eg https://github.com/sitexw/FuckAdBlock), which doesn't seem malign, but doesn't explain why it would be on this site.

So

1) How can I get rid of this element?

2) How might it have got there?

3) Does it imply there's a hole in the site's security?

Marko
2#
Marko Reply to 2018-01-12 14:16:00Z

UPDATE: Facebook have acknowledged this as a bug: https://developers.facebook.com/bugs/336662116810282/?hc_location=ufi

I'm so glad to find this issue - have been tearing my hair out to work out the same exact thing! I found it's coming from fbevents.js (https://connect.facebook.net/en_US/fbevents.js) version 2.8.7 - you can clearly see the code that adds the div in. It seems like this is something that has happened very recently? But likewise, I couldn't find anything other than references to anti adblocking scripts which had me concerned!

You need to login account before you can post.

About| Privacy statement| Terms of Service| Advertising| Contact us| Help| Sitemap|
Processed in 0.336666 second(s) , Gzip On .

© 2016 Powered by mzan.com design MATCHINFO