I’m already using the most recent version of WP. Initially they hacked my personal blog at http://www.themutteringmuse.com so my host company moved me to a new server. But now they have hacked both my personal blog and my photoblog at theshapeoflight.com. I’m really at a loss here.
I’m already using the most recent version of WP. Initially they hacked my personal blog at http://www.themutteringmuse.com so my host company moved me to a new server. But now they have hacked both my personal blog and my photoblog at theshapeoflight.com. I’m really at a loss here.
Some details, what version of WP, PHP and Apache? Ask your host about possible break-in’s. A lot of times, inappropriate security across users on a shared hosting can allow for such hacks.
Regards
From your source code:
<title>The Shape of Light</title>
<meta name="generator" content="WordPress 1.5.1.2" />
Not really “the most recent”…
From your source code:
<title>The Shape of Light</title>
<meta name="generator" content="WordPress 1.5.1.2" />
Not really “the most recent”…
I’m running WP 1.5.2 Strayhorn. PHP version 4.4.1. Apache version 1.3.34 (Unix).
The first time my site was hacked my host company thought that it was because I was using the CodeGRRL calender script, which was recently exploited by hackers. But then they moved me to a new server, we deleted ALL non WP files. We just got my sites back up and running last night and now they’ve been hacked again. π I’m tempted to just give up on my sites, I worked SO hard to get them back up and running. :sob:
Moshu, when I log into WP it tells me its WP 1.2.
The header probably isn’t correct because I pasted it from an earlier template that was running on 1.5.1.2.
Wp 1.2? That’s even worse. The latest stable is 1.5.3
Moshu: Sorry, I meant WP 1.5.2 Strayhorn. I’m really flustered right now.
I’m running WP 1.5.2 Strayhorn. PHP version 4.4.1. Apache version 1.3.34 (Unix).
And I have to apologize, too.
The latest is 1.5.2. Sorry.
this seems indeed a little bit worrying. Since reading these posts I got confused abiout which version you exactly use. Probably it’s best to first check your xmlrpc.php file.
Just in case (it’s still form the old version)
For the jvascript included there seems to be a quick work around… but we need to find the whole/problem they are using…
Orlo, the info I posted is correct, its WP 1.5.2 Strayhorn. I just made a mistake when responded to Moshu because I was really upset as I was typing.
Well, even if I delete the javascript (which I did on one site) all the WP files themselves are now having problems. I tried replacing them with new ones by reuploading WP, but that didnt fix the problem.
For example, one error I’m getting is:
Warning: Cannot modify header information – headers already sent by (output started at /home/akakestr/public_html/muse/wp-content/plugins/friendlycomments.php:52) in /home/akakestr/public_html/muse/wp-admin/admin.php on line 10
Warning: Cannot modify header information – headers already sent by (output started at /home/akakestr/public_html/muse/wp-content/plugins/friendlycomments.php:52) in /home/akakestr/public_html/muse/wp-admin/admin.php on line 11
Warning: Cannot modify header information – headers already sent by (output started at /home/akakestr/public_html/muse/wp-content/plugins/friendlycomments.php:52) in /home/akakestr/public_html/muse/wp-admin/admin.php on line 12
Warning: Cannot modify header information – headers already sent by (output started at /home/akakestr/public_html/muse/wp-content/plugins/friendlycomments.php:52) in /home/akakestr/public_html/muse/wp-admin/admin.php on line 13
And I just replaced this file.
Also, I should note that deactivating plugins doesn’t change anything, it just causes new errors with other files.
I’ll try to get in touch with you via email. Although I think if you are really using the latest version- there might be a bigger problem. A quick search on google revealed that more people are having a similar problem. Found a wordpress 1.2.2 (see report here:
http://board.thefanlistings.org/index.php?showtopic=47631)
anothe report here: http://forum.powweb.com/showthread.php?p=345602 and
someone on: PostNuke 0.7.6.1
