aioseo options & aioseo options network compromised

  • Resolved Marios Chaidousis

    (@marioselgreco)


    3 months ago

    Hi, in /wp-admin/options.php i noticed that aioseo options & aioseo options network have a list of wierd domains 3 of those are malware domains and most of the others arent even valid anymore.

    Care to explain ? I got hacked on https://emake.gr and trying to find what is wrong and i found some urls that arent supposed to be there during checking. I found the same urls in other websites too.

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Plugin Author arnaudbroes

    (@arnaudbroes)

    Hey @marioselgreco,

    Thank you for reaching out to us, and sorry for the late reply.

    The domains you are seeing are valid in the sense that they are not maliciously being injected into our options. They are used by a deprecated feature inside AIOSEO called Bad Bot Blocker that blocks malicious user agents from accessing the site. This feature has been deprecated for years and is only visible for old users of AIOSEO that had it enabled before we deprecated.

    That being said, I think the time has come for us to completely remove this feature from the plugin so I’ll schedule that in for one of our next updates. In the meanwhile though, you can safely ignore this.

    Let me know if you have any other questions!

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this topic.