Login page broken after code injection | ww.wp.xz.cn

steveswl
(@steveswl)

11 years, 4 months ago

After a code injection attack into header.php on my site no login page classes are showing on the body tag on the /wp-admin login page. It’s normally <body class=”login login-action-login wp-core-ui locale-en-us”> but now just <body> is showing. There is a blank character (actually the SOH character) between the “y” and “>”.

Where can I check where this code is generated?

Also the injected code was highly obfuscated. I’m going through backups trying to figure out when the code injection happened. The front-end of the site still seems fine, but turning on WP_DEBUG does not output errors nor warnings.

Viewing 1 replies (of 1 total)

Moderator James Huff
(@macmanx)

11 years, 4 months ago

Remain calm and carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures.

Viewing 1 replies (of 1 total)

The topic ‘Login page broken after code injection’ is closed to new replies.

In: Fixing WordPress
1 reply
2 participants
Last reply from: James Huff
Last activity: 11 years, 4 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics