hack with ckeditor

  • tbthierry

    (@tbthierry)


    12 years, 2 months ago

    Hello,

    I don’t have CKeditor in my WP but I have regularly and increasingly hacking attempts with controls related to security breaches of this pluggin.
    Attempts come from China or Ukraine
    What do you advise me to remove or at least reduce these attacks ip exchange with regularly.
    Thanks

    91.207.4.153
113.142.112.142
59.58.188.93
5.255.75.176
182.187.107.207
91.207.4.153
/includes/editors/fckeditor/editor/filemanager/upload/test.html
/bbadmin/editors/fckeditor/editor/filemanager/upload/test.html
/FCKeditor_Ap/editor/filemanager/connectors/uploadtest.html
/admin/FCKeditor_Ap/editor/filemanager/connectors/uploadtest.html
/login/editors/fckeditor/editor/filemanager/upload/test.html
/mods/ckeditor/filemanager/connectors/uploadtest.html
/administrator/FCKeditor1/editor/filemanager/connectors/uploadtest.html
/admin/FCKeditor1/editor/filemanager/connectors/uploadtest.html
/FCKeditor1/editor/filemanager/connectors/uploadtest.html
/cms/FCKeditor/editor/filemanager/connectors/uploadtest.html
/administrator/FCKeditor/editor/filemanager/connectors/uploadtest.html
/admin/FCKeditor/editor/filemanager/connectors/uploadtest.html
/FCKeditor/editor/filemanager/connectors/uploadtest.html
/administrator/editors/fckeditor/editor/filemanager/upload/test.html
/admin/editors/fckeditor/editor/filemanager/upload/test.html
/admin/editor/filemanager/upload/test.html
/admin/editor/filemanager/connectors/uploadtest.html
/editor/filemanager/connectors/uploadtest.html
/editors/fckeditor/editor/filemanager/upload/test.html
/js/fckeditor/editor/filemanager/connectors/test.html
/js/FCKeditor/editor/filemanager/upload/test.html
/js/FCKeditor/editor/filemanager/connectors/uploadtest.html
/js/fckeditor/editor/filemanager/connectors/test.html
/js/fckeditor/editor/filemanager/browser/default/connectors/test.html
/public/js/FCKeditor/editor/filemanager/upload/test.html
/public/js/FCKeditor/editor/filemanager/connectors/uploadtest.html
/public/js/fckeditor/editor/filemanager/connectors/test.html
/public/js/fckeditor/editor/filemanager/browser/default/connectors/test.html
/fckeditor/editor/filemanager/browser/default/connectors/test.html
/webeditor/editor/filemanager/connectors/uploadtest.html
/webeditor/editor/filemanager/connectors/test.html
/webeditor/editor/filemanager/browser/default/connectors/test.html
/admin/fckeditor/editor/filemanager/connectors/test.html
/admin/FCKeditor/editor/filemanager/upload/test.html
/admin/FCKeditor/editor/filemanager/connectors/uploadtest.html
/admin/fckeditor/editor/filemanager/connectors/test.html
/admin/fckeditor/editor/filemanager/browser/default/connectors/test.html
/editor/editor/filemanager/upload/test.html
/FCKeditor/editor/filemanager/upload/test.html
/FCKeditor/editor/filemanager/connectors/uploadtest.html
/fckeditor/editor/filemanager/connectors/test.html
/fckeditor/editor/filemanager/browser/default/connectors/test.html
/editor/editor/filemanager/connectors/uploadtest.html
/editor/editor/filemanager/connectors/test.html
/editor/editor/filemanager/browser/default/connectors/test.html
/js/FCKeditor/editor/filemanager/upload/test.html
/webmanage/FCKeditor/editor/filemanager/connectors/uploadtest.html
/webmanage/fckeditor/editor/filemanager/connectors/test.html
/webmanage/fckeditor/editor/filemanager/browser/default/connectors/test.html
/admin/system/editor/FCKeditor/editor/fckeditor.Html
Viewing 4 replies - 1 through 4 (of 4 total)
  • Thread Starter tbthierry

    (@tbthierry)

    12 years, 2 months ago

    up
    Any idea of the good solution?

    Thread Starter tbthierry

    (@tbthierry)

    12 years, 1 month ago

    Any idea ?

    Wishow

    (@wishow)

    11 years, 11 months ago

    It seems there is a known vulnerability with CKeditor or FCKEditor.

    I don’t have this plugin installed, but I also get some similar logs. It comes from a french IP address.

    I don’t know anymore.

    esmi

    (@esmi)

    11 years, 11 months ago

    The fact that you have seen logs suggesting that attempts are being made to attack your site does not in way way suggest that this plugin currently has any problems. I would suggest that you start by first posting your own topic in the plugin’s dedicated forum via its page in the Plugin Repository.

    I am now closing this 3 month old topic as it references an older version of WordPress.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘hack with ckeditor’ is closed to new replies.