Security concerns?

  • Resolved maelga

    (@maelga)


    8 years, 1 month ago

    I don’t have this plugin installed but get traffic from IP 188.165.32.5 looking for this file: ​/wp-content​/plugins​/font-uploader​/font-uploader-free.php
    (this is detected using Redirection plugin logging ‘404 not found’ url on my site).

    Not sure how confident the author is in terms of security but this does not look good.

    https://wordpress.org/plugins/frontend-uploader/

Viewing 3 replies - 1 through 3 (of 3 total)
  • Stefano

    (@madking-web-design)

    8 years, 1 month ago

    Try to check with Theme Authenticity Checker (TAC) and also you can search your files easy with String locator Maybe you’ve installed that plugin(or someone else)and some files remains in your server.
    Be aware if you use plugins like that, because users(that you dont know) upload stuff in your website..
    Another situation might be an old vulnerability of this plugin, and some bots hitting your website try to find a hole. You can use Block Bad Queries to solve a situation like that. It will block any unwanted query from your website.

    Plugin Author Rinat

    (@rinatkhaziev)

    8 years, 1 month ago

    This is not the plugin you’re looking for 🙂

    frontend-uploader, not font-uploader.

    Cheers.

    Stefano

    (@madking-web-design)

    8 years, 1 month ago

    And yes indeed… This is not the plugin that you re looking for 😛

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Security concerns?’ is closed to new replies.