Nice try, cunning social engineering type WordPress hacker person!!!
Just kidding… sort of. 🙂 Some info to browse.
WordPress version Changelogs
vulnerabilities wordpress 2.3
CVEs
//www.cvedetails.com/product/4096/Wordpress-Wordpress.html?vendor_id=2337
Huh? I am not a social engineer…
I’m trying to help a friend and if you thought it was dangerous to post this (who is using 2.3.1 anymore? And did I even mention WHERE? No I”m not that stupid) you could have emailed me a PM… <sigh>
I looked in all the files (I have fixed tons of 2.3 hacks before) but could NOT find a thing.
I told him just to upgrade ASAP.
Are you kidding me?
You obviously missed ALL of the intended humor in my response. Perhaps if you re-read it and then ask yourself if you think I was actually being serious, you will see what I mean – not to mention that I actually pointed you to information on almost every published WordPress exploit on the net. I think you might be taking things just a little too seriously here. 🙂
I looked in all the files (I have fixed tons of 2.3 hacks before) but could NOT find a thing.
I told him just to upgrade ASAP.
Then you should already know that simply upgrading at this point is probably not going to fix anything. Here’s some information that might help point them in the right direction. There’s a load of helpful links and information on the subject that can be brought up using a simple search here in the forums.
http://codex.ww.wp.xz.cn/FAQ_My_site_was_hacked
http://ww.wp.xz.cn/support/topic/268083#post-1065779
http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/
http://ottopress.com/2009/hacked-wordpress-backdoors/
http://codex.ww.wp.xz.cn/Hardening_WordPress
http://sitecheck.sucuri.net/scanner/
I hope that helps put you on the right track. Good luck to you!
OK apparently this has something to do with the whole DB and since he hasn’t given me the keys to that, I guess I have to tell him I looked in every file for malicious code and didn’t find any.
