Title: Plugin used for hacking Last modified: May 19, 2023 --- # Plugin used for hacking * Resolved [Kees Lamper](https://wordpress.org/support/users/keeslamper/) * (@keeslamper) * [3 years ago](https://wordpress.org/support/topic/plugin-used-for-hacking/) * I had an hacked website from a customer where the plugin wasn’t installed. But in FTP there was a plugin folder which has exactly the same name! Viewing 7 replies - 1 through 7 (of 7 total) * [MK Chan](https://wordpress.org/support/users/mk-chan/) * (@mk-chan) * [3 years ago](https://wordpress.org/support/topic/plugin-used-for-hacking/#post-16753064) * Same here, 2 sites being installed this plugin, and this plugin wont show on your plugin list until you search the plugin name. * Are you guys site added 2 admin user under pif[dot]com as well? * Let’s find the common point of this cause, both of my site is using Woodmart theme (themeforest[dot]net/item/woodmart-woocommerce-wordpress-theme/20264492) * The theme being mark high risk by patchstack and Malcare. - This reply was modified 3 years ago by [MK Chan](https://wordpress.org/support/users/mk-chan/). - This reply was modified 3 years ago by [MK Chan](https://wordpress.org/support/users/mk-chan/). - This reply was modified 3 years ago by [MK Chan](https://wordpress.org/support/users/mk-chan/). * Thread Starter [Kees Lamper](https://wordpress.org/support/users/keeslamper/) * (@keeslamper) * [3 years ago](https://wordpress.org/support/topic/plugin-used-for-hacking/#post-16753142) * I use the same theme MK Chan! En also have seen the admin users. * [MK Chan](https://wordpress.org/support/users/mk-chan/) * (@mk-chan) * [3 years ago](https://wordpress.org/support/topic/plugin-used-for-hacking/#post-16753245) * That’s the issues, need to report this to theme author for sure. I believe a lot more to come. And I found a thread that theme author don’t really treat this seriously. xtemos[dot]com/forums/topic/automatically-update/ * [calliopeconsulting](https://wordpress.org/support/users/calliopeconsulting/) * (@calliopeconsulting) * [3 years ago](https://wordpress.org/support/topic/plugin-used-for-hacking/#post-16754416) * I experienced a hack on my site and found this plugin as well (also not in the plugin list, but in my main directory). I also found a plugin (that was in my list), called `Hello Press`, which looks like a rip-off of the Hello Dolly plugin. * I am using the standard WordPress Twentynineteen Theme. * Has anyone uncovered any further information? - This reply was modified 3 years ago by [calliopeconsulting](https://wordpress.org/support/users/calliopeconsulting/). * [calliopeconsulting](https://wordpress.org/support/users/calliopeconsulting/) * (@calliopeconsulting) * [3 years ago](https://wordpress.org/support/topic/plugin-used-for-hacking/#post-16754423) * Interestingly, _Post Layouts for Gutenberg_ will display in your plugin list if you search for it, but it does not show by default: * [https://www.dropbox.com/s/yx6i144uidp9num/2023-05-20_18-06-44.jpg?dl=0](https://www.dropbox.com/s/yx6i144uidp9num/2023-05-20_18-06-44.jpg?dl=0) * [Efs](https://wordpress.org/support/users/stevendigital/) * (@stevendigital) * [2 years, 11 months ago](https://wordpress.org/support/topic/plugin-used-for-hacking/#post-16797011) * Today I also found out that the plugin was used for XSS. It has big valnurability issues. Someone must check on that. * Plugin Author [Techeshta](https://wordpress.org/support/users/techeshta/) * (@techeshta) * [2 years, 7 months ago](https://wordpress.org/support/topic/plugin-used-for-hacking/#post-17148489) * Hello @[keeslamper](https://wordpress.org/support/users/keeslamper/), @[MK Chan](https://wordpress.org/support/users/mk-chan/), @[calliopeconsulting](https://wordpress.org/support/users/calliopeconsulting/), @[Efs](https://wordpress.org/support/users/stevendigital/), * I have recently updated this plugin to newer version and cross tested the latest version of WordPress and compatibility of PHP version. * And resolved some warnings and notices that appear with the debug log. * You can feel free to use our plugin with laetst update. * Thank you! Viewing 7 replies - 1 through 7 (of 7 total) The topic ‘Plugin used for hacking’ is closed to new replies. * ![](https://ps.w.org/post-layouts/assets/icon-256x256.png?rev=1992658) * [Post Layouts for Gutenberg](https://wordpress.org/plugins/post-layouts/) * [Frequently Asked Questions](https://wordpress.org/plugins/post-layouts/#faq) * [Support Threads](https://wordpress.org/support/plugin/post-layouts/) * [Active Topics](https://wordpress.org/support/plugin/post-layouts/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/post-layouts/unresolved/) * [Reviews](https://wordpress.org/support/plugin/post-layouts/reviews/) * 7 replies * 6 participants * Last reply from: [Techeshta](https://wordpress.org/support/users/techeshta/) * Last activity: [2 years, 7 months ago](https://wordpress.org/support/topic/plugin-used-for-hacking/#post-17148489) * Status: resolved