WP file manager: Possible security problem ? | WordPress.org

_mf_
(@_mf_)

21 years, 9 months ago

Hello,
I’d like to know if any security problems in regards to upload hacks have been reported ?
I recently discovered a phpfm.0.2.3.zip file on my sites’ web root directory, curiously it’s the file manager this hack is based on.
Any information is appreciated as I am investigating how this file ended up there 😉

Viewing 4 replies - 1 through 4 (of 4 total)

firefox360
(@firefox360)

21 years, 9 months ago

Did you happen to accidentally upload it? Because I think if some one meanted to upload something to your server without your knowledge, I would think that they would atleast upload a virus instead of this…

Mark (podz)
(@podz)

21 years, 9 months ago

or a formmail

Thread Starter _mf_
(@_mf_)

21 years, 9 months ago

A file manager is the first (and most likely only) step to get total control of an account.

Mark (podz)
(@podz)

21 years, 9 months ago

maybe so… but I have been hacked before (pre-wordpress) and attempts were not made to gain control of my site or my files.
They tried to plant a formmail so my server could be used to spam – all they wanted was to be able to send 1000’s of spams, and not get the blame. I have known other people have their domains shut down by their hosts because of this.
Hence my comment above.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘WP file manager: Possible security problem ?’ is closed to new replies.

4 replies
3 participants
Last reply from: Mark (podz)
Last activity: 21 years, 9 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics