[wp-hackers] wordpress theme script injection (hosted on dreamhost)

Mladen Adamovic mladen.adamovic at gmail.com
Sun Oct 31 15:07:57 UTC 2010

Hi guys,

My wordpress software instance was repeatedly hacked ... running latest
Wordpress source code and being hosted on Dreamhost.

I don't know which exploit it did use and couldn't identify it, but it was
adding the following code to my default theme footer.php:

enc =
dec = unescape(enc);

I think I'll have to migrate to Blogger, since I couldn't identify exploit
it did use.

I wanted to drop you an email anyhow since identifying exploits is

More information about the wp-hackers mailing list