WordPress.org

Ready to get started?Download WordPress

Forums

Hacked twice via theme-editor.php (6 posts)

  1. jamesmcd
    Member
    Posted 1 year ago #

    Hi there,

    Two of my sites were just hacked from Iran using the theme-editor.php file. Using the latest version of WordPress. Has anyone else had their site exploited this way?

    Cheers,
    James

  2. Andrew
    Forum Moderator
    Posted 1 year ago #

    Have you resolved the hacks?

  3. jamesmcd
    Member
    Posted 1 year ago #

    Yup, I've had WordPress hacked ~10 times this year already so I'm getting pretty good at getting them back up. It's crazy - I don't know why my clients' sites are being targeted. Apart from Iran, we've had trouble from Saudi Arabia.

  4. Andrew
    Forum Moderator
    Posted 1 year ago #

    How have you resolved the hacks?

  5. jamesmcd
    Member
    Posted 1 year ago #

    Well first I need to fix whatever WordPress core and theme files they've wrecked, so I've logged in via FTP and fixed those up plus removed all the spammy links/porn/etc left on the server. They usually replace the index.php (both core and theme), and the header/footer/page files of the theme.

    I've been extremely lucky that they've left my WP admin email address intact, therefore I can reset my WP password. Once I've reset my password (which they always change) I go through my pages/SEO and make the necessary corrections.

  6. Andrew
    Forum Moderator
    Posted 1 year ago #

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags

No tags yet.