Somebody managed to insert a div with spam text into a blog entry’s content (and in one case even into the description meta tag). As opposed to ‘normal’ comment spam (see rel=nofollow), content spam makes it look as if the blogger recommended the link, which (I presume) gives it a higher google ranking.
So why does the blogger not notice the inserted text? The height and width of the div are zero, so the text is hidden. Some feedreaders however preview entries without div styles, so the inserted text is visible in the RSS feed.
By googling for variations of the link text, I found 7 more blogs. Sure, eight is far from a botnet epidemic. Still it’s strange how the same hidden text turns up in the content of eight unrelated blogs. Do they have anything in common?
The eight cases I saw all run on WordPress, but on different versions.
If you have a wordpress blog, please quickly search the page source for a div with style=’overflow:auto;width:0;height:0; and tell us whether you got one too.
Hidden text can get a site deindexed by Google. This is a big fucking deal.
Update: The second commenter on Ruth’s blog post says upgrading to the latest version of WordPress does not fix the security hole. This is bad.