Security Vulnerability

  • Resolved Thought Nozzle

    (@thought-nozzle)


    9 years ago

    My server has been compromised, and my admin tells me the vulnerability was in the Shopp plugin. Hacker placed a php file and started spamming. We have the latest version, v 1.3.9, installed. I have disabled the plugin. FWIW, Permissions are all set to 755/640, and ownership is account owner. If we find out more about the exact nature of the vulnerability, I will post.

    …Bob
    Bob West

    https://wordpress.org/plugins/shopp/

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author chaoix

    (@chaoix)

    9 years ago

    Bob,

    I am sorry to hear about your server being compromised.

    Would it be possible for you to submit a ticket to the Shopp helpdesk so one of us could take a closer look at your WP and Shopp install?

    https://shopplugin.net/support/

    We take these kinds of inquiries very seriously and if Shopp was the cause of your compromised server, we would want to identify and patch the issue as soon as possible.

    Matthew

    Plugin Author chaoix

    (@chaoix)

    8 years, 11 months ago

    Marking as resolved since there has been no response from the OP in over a month.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Security Vulnerability’ is closed to new replies.