Support » Plugin: Simple 301 Redirects » Hacked – Removed Plugin – Site Still Redirecting

  • The site was hacked. I removed the bad redirect entries and then deleted the plugin but it’s still redirecting. How can I remove this redirection?

    Thanks.

Viewing 4 replies - 1 through 4 (of 4 total)
  • You have to clear your history to remove the redirect on your local computer. To test try using a browser in incognito mode.

    That worked. Thanks for the reply.

    Plugin Author Scott Nelle

    (@scottnelle)

    I believe it is actually the Simple 301 Redirects Bulk Uploader add-on that is the problem. Do you have that installed? The author updated it on August 8th to patch a serious security issue. If you have it installed, you should immediately update it to version 1.2.5 https://wordpress.org/plugins/simple-301-redirects-addon-bulk-uploader/

    Turning off my plugin is also an effective way to undo this, of course.

    I found this in my site referrer logs:

    xxxxxxxxxx.com/wp-content/plugins/simple-301-redirects-addon-bulk-uploader/assets/css/notices.css

    coming from 2 different countries.

    I don’t use the bulk uploader addon. And the URL they used was a subdomain address to a specific page.

    Is this bulk uploader addon subject to hacking?

Viewing 4 replies - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.