sitelock issued a high risk alert on my website.
-
I received an email from sitelock that there are issues on my website resulting from a platform scan they did on my website and the wordpress 4.9.6 update.
Can you please tell me what is going on and how to fix this???
Severity: High
Category: upload
Summary: WordPress <= 4.9.6 – Authenticated Arbitrary File Deletion (unpatched)
Description: WordPress <= 4.9.6 – Authenticated Arbitrary File Deletion (unpatched). This can lead to code execution if the wp-config.php file is deleted, forcing WordPress to start the installation process, allowing an attacker to setup their own administrator credentials and connect to foreign databases to display foreign content. Can be exploited by any user who is able to edit uploaded media.My website is http://www.cefathecat.com.
I have never had this happen before and only since the 4.9.6 was downloaded. Please help!!
Thanks
The blog I need help with is: (visible only to logged in users)
-
Hi,
It looks like your website (http://www.cefathecat.com) is hosted with iPage. We can only assist with WordPress.com hosted sites on this forum.
You can ask for support in the WordPress.org forums:
https://wordpress.org/support/forums/The difference between .ORG and .COM is explained here:
Hope this helps :)
- The topic ‘sitelock issued a high risk alert on my website.’ is closed to new replies.
WordPress.com Forums 