Support » Plugin: Permalink Editor » [Plugin: Permalink Editor] security issue with plugin?

  • Hi,

    just noticed this in my logs:

    PHP Warning: parse_url(//administrator/components/com_joomlaflashfun/admin.joomlaflashfun.php?mosConfig_live_site= [<a href='function.parse-url'>function.parse-url</a>]: Unable to parse URL in /home/XXXXXXX/public_html/wp-content/plugins/permalink-editor/index.php on line 218

    if you search for the phrase “Unable to parse URL” and “permalink editor”, you get a bunch of hits, including a blog post mentioning the Timthumb problem, not sure if it’s related..

    Anyway, I’ve deleted the plugin.

Viewing 1 replies (of 1 total)
  • Already answered you on Twitter, but i figure it might be better to leave a trace for others encountering things like this.

    Basically, this is a potential backdoor to your server. It’s phoning home to execute code which checks for particular vulnerabilities on your server. What it does if it finds any isnt quite clear and warrants further examination, but essentially, when you see this, it’s generally not good.

Viewing 1 replies (of 1 total)
  • The topic ‘[Plugin: Permalink Editor] security issue with plugin?’ is closed to new replies.