My WordPress 1.5.2 was hacked!
In fact i kept this version because i found it lighter and i was lazy to update to the 2.x
but yesterday, i was told my session has expired, and my pass didn’t work anymore
i checked the databases and the mail of the admin was changed to another one ! i guess this is some sql injection, the hacker put his email in the database and resend the pass to his address.
so i’m updating to 2.0 now.
Is there some places (in the database) where i should look to check if there is no backdoor left ?
i found that about 1.5.2 vulnerabilities :
- The topic ‘WordPress 1.5.2 Hacked’ is closed to new replies.