Help me find a contact form on my site?

Started by Sopie1805, 09-26-2021, 23:11:19

Previous topic - Next topic

Sopie1805Topic starter

A spammer is using a contact form on my website to send relentless spam. I have check my contact page and the spam is not coming from there.

Looking at the spam email headers show that it is coming from /public_html/index.php which is just wordpress - so I'm thinking there must be an old contact form somewhere on my huge 20 year old site that I can't find, but that spammers are using.

The email subject line is the only clue I can find and all it says is "Subject: New Message From" and then my site name.

I tried downloading the WP database and searching for that subject line, but it was not found.

How can I find it this form on my site?


dark404

#1
To locate the hidden contact form on your website, here are a few steps you can follow:

1. Use a website crawler: Utilize a website crawling tool such as Screaming Frog or Xenu Link Sleuth to scan your entire website for hidden pages or links that might contain the contact form. These tools can help uncover any hidden or outdated pages that you may have missed.

2. Search your site's source code: Review the source code of your webpages to search for any instances of the "Subject: New Message From" string. Open the HTML source code of each page and use the browser's search function (usually Ctrl + F) to look for this specific text. If it is present, you will be able to identify the page where the contact form is loaded.

3. Check your WordPress theme files: Contact forms in WordPress are commonly implemented within theme files. Look into the theme files, especially template files like single.php, page.php, or specific template files if your theme uses them. Search for code snippets related to contact forms or emails.

4. Examine WordPress plugins and widgets: Contact forms may also be generated by plugins or widgets installed on your WordPress site. Go through the list of active plugins and widgets, paying attention to any that provide contact form functionality. Explore the settings and configuration options for each plugin or widget to find if they match the subject line mentioned in the spam.

Remember to keep your WordPress installation and plugins up to date, as outdated versions may contain vulnerabilities that can be exploited by spammers.


A spammer is utilizing a contact structure on my site to send constant spam. I have check my contact page and the spam isn't coming from that point.

Taking a gander at the spam email headers show that it is coming from/public_html/index.php which is simply wordpress - so I'm figuring there should be an old contact structure some place on my enormous 20 year old site that I can't find, yet that spammers are utilizing.


markly32

A spammer is utilizing a contact structure on my site to send constant spam. I have check my contact page and the spam isn't coming from that point.and this affect the site badly.Donnot try to b spam