backdoor.php not detected by Wordfence… | WordPress.org

Resolved Romain VINCENT
(@romainvincent)

9 years, 3 months ago

Hi,

yesterday, I was backup a site for a new client and I found with ClamXav a backdoor.php in /wp-content/uploads/image/image.php that Wordfence didn’t detected…

Can you tell me more ?

Thanks

https://wordpress.org/plugins/wordfence/

Viewing 1 replies (of 1 total)

WFSupport
(@wfsupport)

9 years, 3 months ago

In the new version there is an option to block php execution in that location (bottom of options page). There should never be php in the uploads directory. Also, make sure and choosing to scan images as executable should pick that up.

tim

Viewing 1 replies (of 1 total)

The topic ‘backdoor.php not detected by Wordfence…’ is closed to new replies.

In: Plugins
1 reply
2 participants
Last reply from: WFSupport
Last activity: 9 years, 3 months ago
Status: resolved