Lost Literally 10 Client Sites In The Last 3 Days

  • ideasandpixels

    (@ideasandpixels)


    5 years, 1 month ago

    I’ve been going non-stop repairing these. Dozens of files touched on each installation with injected scripts. I’ve been manually fixing by combing for file changes on the server and removing the bad code at the top of all changed files. I’ve updated all to the latest versions — please don’t screw up this badly again.

Viewing 3 replies - 1 through 3 (of 3 total)
  • mbrsolution

    (@mbrsolution)

    5 years, 1 month ago

    We apologize for any inconvenience. The developers patched the vulnerability the moment it was reported by releasing version 1.3.9.1.

    The vulnerability was introduced in version 1.3.9 when the following features were added?

    1.3.9

    Added Export\Import settings functionality.
    Added option to delete all settings and deactivate plugin.

    One of WordPress moderators published a solution if your site has been hacked. Please refer to the following forum post.

    Kind regards

    Thread Starter ideasandpixels

    (@ideasandpixels)

    5 years, 1 month ago

    Is it really true that 1.3.9.1 has been hacked, too?

    mbrsolution

    (@mbrsolution)

    5 years, 1 month ago

    Hi, there is no evidence as far as I know to say that the latest version 1.3.9.1 is vulnerable.

    Kind regards

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Lost Literally 10 Client Sites In The Last 3 Days’ is closed to new replies.