Security vulnerability? WP Super Cache file deleted during "Pharma Hack"
I’ve gotten attacked by the infamous “Pharma” hack twice in the past week. Not sure the cause, but I’ve noticed that when the attacker strikes, WordPress complains that a WP Super Cache PHP file was deleted. Unfortunately, the error only appears once so I don’t remember the exact file name.
The attack leaves a file called uploas.php in wp-includes that redirects bots to a pharmaceutical website.
I don’t know if this is a vulnerability caused by WP Super Cache, but I figured it’s worth pointing out. In the meantime, I’m going to keep looking into it.
- The topic ‘Security vulnerability? WP Super Cache file deleted during "Pharma Hack"’ is closed to new replies.