Support » Fixing WordPress » Website hacked :(

  • Resolved 37Report


    I’m the owner of the domain I haven’t posted to my website for over a month, and when I went to check it a few minutes ago, I discovered that on September 18, someone hacked into my WordPress account, deleted all my entries, posted an offensive one, and apparently changed my administrator password, so that I can’t log in and fix it. 🙁

    Is there a way to reset the php file that controls users, so that I can create a brand new login without having to uninstall and reinstall WP? I don’t want to have to recreate the template I have on my site. It took me a while because I hadn’t written code in such a long time, and if I have to do it again, I probably just won’t even keep my website. Someone please help me. 🙁

Viewing 10 replies - 1 through 10 (of 10 total)
  • If you have phpmyadmin access, you can go in through there and reset your password.

    I’m sorry this happened. Do you have a backup of the database that you could restore your old posts from? Maybe check with your host to see if they have one, if you don’t.

    Don’t forget to upgrade WordPress.

    I’ll try this. Keep checking back, in case it doesn’t work. If not, maybe we can come up with something else to try. I’m not sure if my host has a backup. Even if not, it sucks my entries are gone, but I’ll deal with having to start over. I just don’t want to have to remake the template. I’ll post again in a few…

    Okay, this is probably a stupid question, but how would I access it if I had it? Or /phpmyadmin.php? I have no clue if I even have access to it.

    You’ll have to ask your host. If you have CPanel or something like that, check there first though. There will often be a link in like a MySQL or databases area.

    Yay, my host takes forever to respond to anything. I’m checking my CPanel to see if it’s there. Also, do you think the fact that someone hacked into my site has something to do with the security (or lack thereof) of my hosting company? Or could it happen to even the most stable server?

    Yay, I found phpMyAdmin under MySQL Databases. I’m going to try this…




    Your host is not responsible for any insecure applications you choose to run.

    Alas, though we try our hardest, WordPress sometimes falls into the category of “insecure applications”. Verions prior to 1.5.2 suffered from a variety of vulnerabilities.

    Version 1.5.2 is secure for now. If new vulnerabilities arise, you can be sure action will be taken.

    It worked! Thank you SO much for your help. Is there anything at all I can do to prevent this from happening again? I’ll definitely make sure I backup my entries and template code from now on. Thank you again. I’m so grateful. 🙂

    Upgrade to the latest stable, released version as soon as you can, if you haven’t already done so. And backup, backup, backup. Everything. Database, files, everything.


Viewing 10 replies - 1 through 10 (of 10 total)
  • The topic ‘Website hacked :(’ is closed to new replies.