hidden file possible vulnerability

  • Resolved unlockgenie

    (@unlockgenie)


    5 years, 9 months ago

    my website has been redirecting users to other sites. after inserting this plugin I found a hidden file in .ico format. the file contained php encoded script. it was also linked as an includee in my wp-config.php. can you please check your plugin for possible vulnerabilities.

Viewing 1 replies (of 1 total)
  • Plugin Contributor pronskiy

    (@pronskiy)

    5 years, 9 months ago

    @unlockgenie,

    The plugin source is available in the WordPress directory: https://plugins.trac.ww.wp.xz.cn/browser/search-exclude/tags/1.2.6

    It shows all the files of the plugin. And there are no hidden files there. It also never touches any of your files including wp-config.php.

    Moreover, WordPress plugin directory is analyzed for any malicious or vulnerable code.

    With that said, the plugin is clear and secure. Looks like your website got hacked in some different way.

Viewing 1 replies (of 1 total)

The topic ‘hidden file possible vulnerability’ is closed to new replies.