I am noticing a pile of traffic all of a sudden on different wordpress installs, attempting to directly post to admin-bar.php. It looks like an attempt to add malware onto the admin bar, which would potentially permit either a user privilege escalation or to try to obtain credentials or similar.
Thankfully, I get errors like this:
PHP Fatal error: Call to undefined function add_action() in /var/www/website/wp-includes/admin-bar.php on line 48
Interestingly, I didn’t see these before installing 3.9.1, which means either the hack was on previous version, or they have found something new.
I did find one cached page on Google (not the actual page anymore) that showed this being used to install a rootkit. Again, not sure of the mechanics, but I am seeing plenty of activity on this.
- The topic ‘Possible Security Vunerability: admin-bar.php’ is closed to new replies.