Site hacked via this plugin - [Tell A Friend: Share/Bookmark/Email/Social Bookmarking Button] Review | WordPress.org

mdjasper
(@mdjasper)

10 years, 11 months ago

My site was hacked via this plugin enabling hackers to gain access to phpsendmail and distribute pornography via our wordpress installation.

FILE HIT LIST:
{CAV}PHP.Trojan.Spambot : /wp-content/plugins/tell-a-friend/ticketkRS.php
{HEX}php.cmdshell.unclassed.344 : /wp-content/plugins/tell-a-friend/tell-a-friend.php

tell-a-friend.php http://pastebin.com/nDKMMjMu

ticketRS.php http://pastebin.com/8xR03AAs

BIndex.php http://pastebin.com/6aMfuffN

The topic ‘Site hacked via this plugin’ is closed to new replies.

In: Reviews
0 replies
1 participant
Last reply from: mdjasper
Last activity: 10 years, 11 months ago