WordPress.org

Ready to get started?Download WordPress

Forums

Urgent!!! WP 2.3.3 Hacked!! (7 posts)

  1. El Nino
    Member
    Posted 6 years ago #

    Hi.. anybody know what's securities issues on this WP Site:
    http://xxxxxxx.info/c99.php (i'm hide url for security and privacy reason, and i've contact admin of site)

    Here's the preview:
    http://i30.tinypic.com/id8yh4.jpg
    That's not my WP but i can see his backend...

    seems hacked by C99 Shell, i'm just worry if that's happened to my WP :( anybody have info for this issues?
    That's WP 2.3.3

  2. El Nino
    Member
    Posted 6 years ago #

    Update:
    Here screenshot of his/her plugins:
    http://i30.tinypic.com/1sjog8.jpg

    Now the problem has fix by owner, but still curious which security issues happened there.

  3. Lea
    Member
    Posted 6 years ago #

    I had my entire journal hacked by C4PARANA on Tuesday

  4. Len
    Member
    Posted 6 years ago #

    @El Nino

    Without details it's impossible to tell how it happened. Looking at the plugin screenshot I see they were running wp-cal. There was a vulnerability reported here,
    http://www.milw0rm.com/exploits/4992

    @Lea,

    If this is your site >>> ladylea.com/wordpress
    <meta name="generator" content="WordPress 2.3.1" />

    I wonder why.

  5. whooami
    Member
    Posted 6 years ago #

    LenK, I just nod my head these days.

    people just dont get it.

  6. El Nino
    Member
    Posted 6 years ago #

    @Len K:
    Uhmm i just cant show his/her exploit url here. But now his/her WP seems fixed now: http://brownberets.info
    For Lea case, so it's because an outdate of WP version?

    @Lea:
    Which is your site? i've found many
    C4PARANA victims in google...

    Anyway maybe case is closed (Solved) right?
    So many people use wp-cal, should we alert him one by one?
    W P - C A L

  7. Len
    Member
    Posted 6 years ago #

    @El Nino,

    No I'm not suggesting case solved. What I'm saying is that officially there are no known exploits in WP 2.3.3. That's not to say there isn't. But there are known exploits in previous versions so it behooves you or anyone else to upgrade the software you're using.

Topic Closed

This topic has been closed to new replies.

About this Topic