Got 47 Site Hacked Due to this Plugin!

  • As a Bangladeshi, i always recomended this plugin to my clients. Used this plugin to all the sites of my client. Its total 47 website, and all the websites are hacked due to this plugin, its about 7 days and night to fixed the issue, and i updated the plugin to the latest version and all sites got hacked again and again. I almost lost my job just because of still using the plugin after got hacked. I kept faith to the latest update.

    But there is still some security issues. Now i removed this plugin from all the site and freshly installed the WordPress again. Sites are alright now. My client lost many sales and faith from their customers after got hacked.

    If there is any option to give review in -10 i will give that rating and will never ever use this plugin in any website.

Viewing 1 replies (of 1 total)
  • Plugin Support Pial

    (@iapial)

    Dear @wpmonkeys

    We deeply apologize for the distressing experience you have faced as a result of the security issues. We understand the gravity of the situation and the significant repercussions it had on your job and the trust of your clients’ customers.

    We want to assure you that we have taken all the necessary steps to address and fix the problem, and we have implemented measures to ensure its resolution. The vulnerability you experienced was related to an externally requested method via curl(). We have identified this issue and made internal changes to rectify it and strengthen the security of our plugin. There is no vulnerability issues is reported with Our Latest version of Essential Addons.

    During the previous vulnerability, it is possible that hackers exploited the situation and?added unauthorized administrator users?or created?backdoors?or left?malicious code?using file manager plugins.And because of that even after updating the EA Plugin you faced the issue again. We deeply apologize for the hardship and negative impact this has had on your professional endeavors. Please note that we did informed all of our users regarding the issue and provided a detailed?instructions?on how to overcome the issue. It is possible that you may have missed the email due to the filtering system of your email provider or overlooking it among other messages in your inbox. We sincerely apologize for any inconvenience this may have caused.

    If there is anything we can do to assist you further or regain your trust, please do not hesitate to let us know. We are here to support you and address any lingering concerns you may have.
    Again, we apologize for any inconvenience caused and appreciate your understanding as we strive to provide a more secure experience.

Viewing 1 replies (of 1 total)
  • The topic ‘Got 47 Site Hacked Due to this Plugin!’ is closed to new replies.

Tags