Wordfence Security doesn't detect webadmin shell

  • Hello.
    These last days I was attacked by a hacker who was using webadmin.php file manager to inject my theme files. I’v scanned my website several times with Wordfence Security but it didn’t detect webadmin.php file as it’s known as shell. I believe this shell was uploaded to my website via an old vbulletin forum that I’v deleted now. I was unable to find all shell copies in my website until I used Web Shell Detector:

    https://github.com/emposha/PHP-Shell-Detector

    I like Wordfence Security because it’s the best one I’v tested, but I think it will more helpful if you make it able to detect all known shells.

    The webadmin.php source code can be found on its website here:

    https://cker.name/webadmin/

    It’s just a web file manager but it’s used bu hackers.

    https://www.ads-software.com/plugins/wordfence/

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author WFMattR

    (@wfmattr)

    Hi,

    Thanks for the report. I have sent this on to the dev team (reference number FB1250), to evaluate to possibly include in future scans.

    -Matt R

    Thread Starter Abdelhadi Touil

    (@hadi060)

    Hi Matt.
    Thank you very much for your quick reply. Good luck guys, I’ll be waiting for this feature in the future versions.
    Sincerely.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Wordfence Security doesn't detect webadmin shell’ is closed to new replies.

Tags