Коментарі для запису: Виконання коду в WordPress 2.5 - 3.1.1 http://websecurity.com.ua/5108/ Wed, 13 May 2026 18:22:55 +0000 http://wordpress.org/?v=MustLive Edition від: MustLive http://websecurity.com.ua/5108/#comment-364964 Sun, 03 Jul 2011 18:05:07 +0000 http://websecurity.com.ua/5108/#comment-364964 <strong>Dear mac.</strong> The vulnerability, which I wrote in this post, is already fixed in WP 3.1.3. So these attackers used another hole in your WordPress or in plugin for WP or in other webapps or in web server. If they attacked you via brute forcing ssh and they picked up password for root, then you need to change this password also, not only password for your WP installation. In any case, if you changed all passwords, but they still putting phishing content at your site, then it's quite possible that they put backdoor into site (in WP or in other webapps). Concerning backdoor you can read in my article <a href="http://websecurity.com.ua/4909/" rel="nofollow">Placing shells (backdoors) at web sites</a>. So you need to find backdoor and delete it (or you can delete all files in your WP folder and reinstall WP and all plugins for it, to make "clean" installation). Dear mac.

The vulnerability, which I wrote in this post, is already fixed in WP 3.1.3. So these attackers used another hole in your WordPress or in plugin for WP or in other webapps or in web server.

If they attacked you via brute forcing ssh and they picked up password for root, then you need to change this password also, not only password for your WP installation. In any case, if you changed all passwords, but they still putting phishing content at your site, then it’s quite possible that they put backdoor into site (in WP or in other webapps).

Concerning backdoor you can read in my article Placing shells (backdoors) at web sites. So you need to find backdoor and delete it (or you can delete all files in your WP folder and reinstall WP and all plugins for it, to make “clean” installation).

]]> від: mac http://websecurity.com.ua/5108/#comment-364951 Sun, 03 Jul 2011 15:37:24 +0000 http://websecurity.com.ua/5108/#comment-364951 Someone uploaded a phishing script to my latest worpress version 3.14 http://let.de/index.php/code-execution-vulnerability-in-wordpress/ what todo ? :( 8O Someone uploaded a phishing script to my latest worpress version 3.14

http://let.de/index.php/code-execution-vulnerability-in-wordpress/

what todo ? :( 8O

]]> від: MustLive http://websecurity.com.ua/5108/#comment-360836 Sat, 28 May 2011 16:24:32 +0000 http://websecurity.com.ua/5108/#comment-360836 В WordPress 3.1.3 розробники виправили дану уразливість. При цьому, традиційно, не подякувавши мені (ні публічно, ні приватно). В WordPress 3.1.3 розробники виправили дану уразливість. При цьому, традиційно, не подякувавши мені (ні публічно, ні приватно).

]]>