Worries with WordPress Security

  • itmonitor

    (@itmonitor)


    11 years, 4 months ago

    Hello,

    I installed the plugin Who’s Been Online, which is helping me to check about visitors who are intent in accessing WordPress or WordPress plugins’ folders in the server. For instance:

    1. Somebody from Latvia tried to access /wp-content/themes/construct/lib/scripts/dl-skin.php . I do not have the Construct theme installed in my WordPress.

    2. Someone from Germany tried to access /wp-content/uploads/2009/01/topper.php . I do not have the folder 2009/01… in my WordPress uploads folder.

    Other samples:

    /wp-content/plugins/formcraft/css/demo.css
/wp-content/plugins/photosmash-galleries/readme.txt
/wp-content/plugins/wp-symposium/readme.txt

    and many more I can provide upon request from a WordPress security officer.

    I do not have the plugins wp-symposium, formcraft or photomash installed. This is clearly some malicious activity scanning WordPress and Plugin folders, trying to prey on infected files or as in one case above, at the WordPress upload folder.

    While they try to access non-existent plugins, this does not worry me too much. However, in some cases they access (or try to) plugins I have installed in my WordPress. This worries me a lot.

    I wonder if the WordPress security is aware of this behaviour and how can I get in touch with WordPress security personnel to investigate further.

    Looking forward to a reply,

    Rgs

    IM

Viewing 4 replies - 1 through 4 (of 4 total)
  • Moderator Jan Dembowski

    (@jdembowski)

    Forum Moderator and Brute Squad

    11 years, 4 months ago

    Those are probes to see if you have exploitable code on your installation and that will occur just by virtue of your being connected to the Internet. Almost every WordPress installation will see that sort of data in the logs.

    If you keep your installation and add-on plugins and themes up to date and have a maintained web host then you really have nothing to fear. If you want to settle you mind some more then please give this a read.

    http://codex.ww.wp.xz.cn/Hardening_WordPress

    But you really don’t have to worry about probes for code that you do not have on your installation.

    iramency

    (@iramency)

    11 years, 4 months ago

    Okay I have disabled all plugins and changed password, and my website is still hijacked for levitra and enzye, i read all the information this was a scam happening a year ago, I cannot get it off to save the life of me. How embarassing for us and our customers. HELP

    can someone help

    Moderator Jan Dembowski

    (@jdembowski)

    Forum Moderator and Brute Squad

    11 years, 4 months ago

    Can you please start your own support topic?

    https://ww.wp.xz.cn/support/forum/how-to-and-troubleshooting#postform

    It’s the best way to get your problem the support it deserves.

    Thread Starter itmonitor

    (@itmonitor)

    11 years, 4 months ago

    Hello Jan,

    many thanks for your reply. I feel safe now.

    Please, you can mark this thread as resolved.

    All the best

    IM

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘Worries with WordPress Security’ is closed to new replies.