WordPress.org

Forums

Tell a Friend
HACKED - Plugin abused by malicious third parties (1 post)

  1. jacripe
    Member
    Posted 1 year ago #

    This plugin or one running under the same name was abused by a malicious third party, causing an account infection and the uploading of numerous other files. The origin of the tell-a-friend plugin was through the WordPress Dashboard plugin installer in this case, leading me to believe it was intentionally installed by the account owner and later abused by a malicious third party.

    Please review the plugin's code to ensure it does not permit file injection or malicious file uploads to the hosting account.

    http://wordpress.org/plugins/tell-a-friend/

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic