One of my users blogs has been hacked or spammed in an interesting way. The following URL is accessible on their blog:
If I alter the request, like:
I get a 404 that is NOT served by my server:
The requested URL /files/buy-cialisz.html was not found on this server.
Apache/2.0.59 (FreeBSD) mod_ssl/2.0.59 OpenSSL/0.9.7e-p1 mod_perl/2.0.3 Perl/v5.8.8 Server at feed2.pills-searches.com Port 80
How is this hack working, and what can I do to fix it?
The blog is up to date with 2.2.2. What mechanism in WP uses URLs with this format? Anyone know how this hack might have occurred?
- The topic ‘What is this hack?’ is closed to new replies.