cancel
Showing results for 
Search instead for 
Did you mean: 

Your site is compromised with injected JavaScript

Your site is compromised with injected JavaScript

After enabling minification of Javascript in backend admin , the Magento Security Scan says this for all 2.2.3 sites we have:

"Your site has failed a scan. This means it is vulnerable to attack or already a victim of malicious software. "

"Your site is compromised with injected JavaScript. (60)
The malicious code signature(s) has been found in resources:

" .../static/version..../_cache/merged/.........min.js "

If we disable minification of Javascript in backend admin, the Magento Security Scan says all is OK

Seems this has been previously reported but the issue still persists

5 REPLIES 5

Re: Your site is compromised with injected JavaScript

Hi @fieldcutter,

 

Thank you for sharing this info!

Maybe this information could be useful for @msavich

Re: Your site is compromised with injected JavaScript

Thank you!

I'll take care of this issue.

Re: Your site is compromised with injected JavaScript

It should be fixed now.

Re: Your site is compromised with injected JavaScript


@msavich wrote:

It should be fixed now.


This problem has been detected again. Magento ver. 2.2.3

Re: Your site is compromised with injected JavaScript

Where is the solution by the way?