Security Alert. Theme file showing FULL server path

Resolved BeautyPirate
(@beautypirate)

12 years ago

Uhm… I need some help please.

The index.php file from my theme (Twentyten child theme) somehow
exposes the full server path to the public. That can´t be good, right?

WordPress internal path: /is/htdocs/wpXXXXXXXX_XXXXXXXX/www/wp-content/themes/mytwentyten/index.php

Why does it do that and how do I prevent it?

Index file is unchanged but it seems to include the info?

Viewing 9 replies - 1 through 9 (of 9 total)

esmi
(@esmi)

12 years ago

Unless you provide a link to a page demonstrating the problem, no one will be able to offer much in the way of assistance.

Thread Starter BeautyPirate
(@beautypirate)

12 years ago

Oh sorry, I forgot: XXX

However there is no problem when you watch the site,
the alert only shows up on the security scanner.

Edit: Link removed due to 113 malicious code upload attempts
in the last hour. Folks… this is a help forum, go play somewhere else.

Thread Starter BeautyPirate
(@beautypirate)

12 years ago

http://sucuri.net/wordpress-internal-path-warning

That´s it but I have no access to php.ini I think.

Any .htaccess rule that applies?

esmi
(@esmi)

12 years ago

I meant the page on your site that demonstrates this “problem”…

esmi
(@esmi)

12 years ago

There are no server path references on your site’s home page.

Thread Starter BeautyPirate
(@beautypirate)

12 years ago

http://sitecheck.sucuri.net

And then how is that possible? Click website details

Thanks for your time

Edit: Link removed due to 113 malicious code upload attempts
in the last hour. Folks… this is a help forum, go play somewhere else.

esmi
(@esmi)

12 years ago

There’s nothing wrong with your site. Check out the source of your pages yourself.

Thread Starter BeautyPirate
(@beautypirate)

12 years ago

In fact, there is something wrong, there´s the solution if anyone
has the same problem one day:

http://zeo.my/hide-php-errors-using-htaccess/

egyptianweb
(@egyptianweb)

11 years, 8 months ago

has the same problem
How to resolve this problem

thanks

Viewing 9 replies - 1 through 9 (of 9 total)

The topic ‘Security Alert. Theme file showing FULL server path’ is closed to new replies.

Security Alert. Theme file showing FULL server path

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics