Question about file uploads | WordPress.org

Resolved tomdkat
(@tomdkat)

9 years ago

Hi! I just noticed an entry in the NinjaFirewall log where a file upload of wp-root.php was allowed by NinjaFirewall. This file was uploaded from a computer in the Russian Federation. *sigh*

How can I find out where this file was uploaded?

Thanks!

https://wordpress.org/plugins/ninjafirewall/

Viewing 2 replies - 1 through 2 (of 2 total)

Plugin Author nintechnet
(@nintechnet)

9 years ago

Hi,

It does not necessarily mean the file was uploaded. It could simply be a failed attempt to upload a file via a potential vulnerability.
To understand how PHP and NinjaFirewall handle uploads, see those 3 discussions:
https://wordpress.org/support/topic/understanding-the-the-file-uploads-rule
https://wordpress.org/support/topic/log-shows-suspicious-file-uploaded
https://wordpress.org/support/topic/upload-via-admin-ajaxphp

Now if the file was really uploaded, ensure you are using NinjaFirewall’s “File Check” and “File Guard” features. They do a pretty good job when a similar issue occurs.

Thread Starter tomdkat
(@tomdkat)

9 years ago

Great! Thanks for the information!

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Question about file uploads’ is closed to new replies.

In: Plugins
2 replies
2 participants
Last reply from: tomdkat
Last activity: 9 years ago
Status: resolved