[wp-trac] [WordPress Trac] #48049: bots searching for vulnerable plugins
WordPress Trac
noreply at wordpress.org
Mon Sep 16 11:37:46 UTC 2019
#48049: bots searching for vulnerable plugins
-------------------------+-----------------------------
Reporter: loranrendel | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version:
Severity: normal | Keywords:
Focuses: |
-------------------------+-----------------------------
I've logged hundreds of attempts to download wp-config.php from my site.
{{{
/wp-content/themes/mTheme-Unus/css/css.php?files=../../../../wp-config.php
/wp-admin/admin.php?page=miwoftp&option=com_miwoftp&action=download&item
=wp-config.php&order=name&srt=yes
/wp-content/plugins/google-mp3-audio-player/direct_download.php?file
=../../../wp-config.php
/wp-admin/admin-ajax.php?action=getfile&/../../wp-config.php
/wp-content/themes/acento/includes/view-pdf.php?download=1&file=/../../wp-
config.php
}}}
All these bots trying to use some vulnerabilities.
I propose to use code like this inside WordPress Core to prevent such
attempts:
{{{#!php
<?php
if (strpos($_SERVER['REQUEST_URI'], 'wp-config') !== false) {
die;
}
}}}
--
Ticket URL: <https://core.trac.wordpress.org/ticket/48049>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list