Malicious Code injecion on WordPress. Affects quite a few. (3 posts)

  1. Dheeraj Singh
    Posted 3 years ago #


    We run several sites through wordpress.

    One day we received a mail through google webmaster tools for one of my website infonary.com, that it was hacked and may have been compromised.

    On checking the code we found this

    [Code moderated. Please do not post hack code blocks in the forums. Please use the pastebin]

    This is some code that sends user visitor data to some website. This is very dangerous because it has a very low footprint and it very difficult to detect automatically.

    On Checking our other websites we found this code on almost all websites and usually affects index.php (everywhere) and theme files.

    One way that I think this code affected my websites was to make my rss feeds stop working through curl.

    Please request all of you running wordpress to kindly check your websites and please let others know about this.

    Thanks and Regards
    Dheeraj Singh

  2. esmi
    Forum Moderator
    Posted 3 years ago #

  3. Dheeraj Singh
    Posted 3 years ago #

    Thanks Esmi,

    Actually I did. This post was just to inform others on the issue.

Topic Closed

This topic has been closed to new replies.

About this Topic