Is anyone else encountering hacks on 2.9.2? I have found the following across about 10 sites:
- wp-includes/general-templates.php has been modified to include malicious code for malware
- wp-content/plugins/akismet/rss-feed.php has been added by a hack that in turn re-directs google searches
- write to /cgi-bin/ above public_html that redirects Google searches. I discovered this on Friday when Rackspace's Cloud Sites got about 1000 hacks at once. I think I discovered the problem for them :). That hack modified wp-blog-header.php with a simple include("") command.
I didn't notice many of these hacks until I used Google's webmaster tools. With that, you can see what Google sees. Many of these malware and redirects only listen for Google, so you may never know about the problem. Just search
I don't need to know what the 2.9.2 hole is, but I would like the admins to acknowledge something is wrong. I have spent three days constantly catching up to these hacks. The Exploit Scanner misses some of the problems and simply deleting WP and re-installing isn't working.