Home How to find the origin of some invasive html?
Reply: 1

# How to find the origin of some invasive html?

Arepo
1#
Arepo Published in 2018-01-12 13:19:30Z
 I've been working on the site https://founderspledge.com/ and just noticed that if you go to the main page, and open the Chrome console to view the source, there's an element that I certainly didn't put there:   It also doesn't show up when I run the site's code in localhost, or when I load the page source separately using Chrome's 'View Source' option. I Googled the div's class list, and the top few hits were from anti-ad blocker software (eg https://github.com/sitexw/FuckAdBlock), which doesn't seem malign, but doesn't explain why it would be on this site. So 1) How can I get rid of this element? 2) How might it have got there? 3) Does it imply there's a hole in the site's security?
Marko
2#
Marko Reply to 2018-01-12 14:16:00Z
 UPDATE: Facebook have acknowledged this as a bug: https://developers.facebook.com/bugs/336662116810282/?hc_location=ufi I'm so glad to find this issue - have been tearing my hair out to work out the same exact thing! I found it's coming from fbevents.js (https://connect.facebook.net/en_US/fbevents.js) version 2.8.7 - you can clearly see the code that adds the div in. It seems like this is something that has happened very recently? But likewise, I couldn't find anything other than references to anti adblocking scripts which had me concerned!
 You need to login account before you can post.
Processed in 0.336666 second(s) , Gzip On .

© 2016 Powered by mzan.com design MATCHINFO