[wp-trac] [WordPress Trac] #44554: Multiple sites hacked
WordPress Trac
noreply at wordpress.org
Tue Jul 10 07:18:18 UTC 2018
#44554: Multiple sites hacked
--------------------------+----------------------
Reporter: tkalfaoglu | Owner: (none)
Type: defect (bug) | Status: closed
Priority: normal | Milestone:
Component: General | Version: 4.9.7
Severity: normal | Resolution: invalid
Keywords: | Focuses:
--------------------------+----------------------
Changes (by swissspidy):
* status: new => closed
* resolution: => invalid
* milestone: Awaiting Review =>
Comment:
Hi there and Welcome to WordPress Trac!
This place is for fixing bugs in WordPress itself. Unfortunately we can't
help you with your hacked site here.
For this we have https://wordpress.org/support/ and also
https://codex.wordpress.org/FAQ_My_site_was_hacked to help you get started
with cleaning up your site and getting back to normal.
When looking at your log excerpt, it reads as if someone logged in
regularly via `wp-login.php` and then edited some files and uploaded
plugins.
Note: if you do think you have found a security vulnerability in WordPress
core, please report them on HackerOne: http://hackerone.com/wordpress
--
Ticket URL: <https://core.trac.wordpress.org/ticket/44554#comment:2>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list