cancel
Showing results for 
Search instead for 
Did you mean: 

Your site is compromised with injected JavaScript

Your site is compromised with injected JavaScript

After enabling minification of Javascript in backend admin , the Magento Security Scan says this for all 2.2.3 sites we have:

"Your site has failed a scan. This means it is vulnerable to attack or already a victim of malicious software. "

"Your site is compromised with injected JavaScript. (60)
The malicious code signature(s) has been found in resources:

" .../static/version..../_cache/merged/.........min.js "

If we disable minification of Javascript in backend admin, the Magento Security Scan says all is OK

Seems this has been previously reported but the issue still persists

3 REPLIES

Re: Your site is compromised with injected JavaScript

Hi @fieldcutter,

 

Thank you for sharing this info!

Maybe this information could be useful for @msavich

--
If you've found one of my answers useful, please give "Kudos" or "Accept as Solution"

Re: Your site is compromised with injected JavaScript

Thank you!

I'll take care of this issue.

Re: Your site is compromised with injected JavaScript

It should be fixed now.