Seems site was hacked through plugin
-
-
- ScurvyDawg
- Rocketeer
- Posts: 53
- Thanks: 0
-
Had some malicious code uploaded via /wp-content/plugins/wp_roknewspager/
Obviously a Wordpress
Scripts were uploaded to the server and the logs point to /wp_roknewspager/ as the security flaw.
Have not seen an update for this in my updates for wordpress so I thought I would mention it here.
Are there any known vulnerabilities in this plugin? Is there a recent security release of this plugin?
I never see a lot of discussion on here about security so I am unsure where to post this question.
-
-
-
- Jakub Baran
- Elite Rocketeer
- Posts: 4329
- Thanks: 81
-
Hi,
Looks like you're using the old version of the plugin with the faulty timthumb script. The plugin updates are displayed in WordPress only for plugins that are in the WordPress plugin directory, and since our plugins aren't free - they cannot be placed there.
To get your plugin secure again please grab the newest version of the timthumb file from here : code.google.com/p/timthumb/ , rename it to the thumb.php and replace in all of the RT plugins on your site and in the theme directory too.
Thanks,
Jakub - Remember to always post a link to the site you're having problem with.
-
-
-
- ScurvyDawg
- Rocketeer
- Posts: 53
- Thanks: 0
-
Thank you very much Jakub. I suspected it was exactly like something like timthumb that was used within one of your plugins that caused the problem.
Is there a way I can subscribe to emails warning me to apply security updates to your plugins when ever they happen?
Thanks again.
-
-
-
- Stephen_Sheasby
- Jr. Rocketeer
- Posts: 34
- Thanks: 0
-
Hi all,
My ISP closed me down due to this same issue. The solution is to get the Tim Thumb Vulnerability Scanner plugin ( wordpress.org/extend/plugins/timthumb-vulnerability-scanner/ ) and run it within Wordpress. It patched all the problem pieces of code for me and I am up and running again.
Stephen
-
Time to create page: 0.066 seconds