Malicious Files in Ultimate Members Plugin

Hi @vishwasbecs,

Unfortunately, the version prior to 2.0.22 indeed had a security vulnerability, however, we’ve fixed this issue in the latest version of the plugin. Make sure to update to the latest 2.0.23 version and purge your temp files in Ultimate member -> Dashboard and “Purge Temp” button.

Regards.

@ultimatemembersupport I’ve upgraded to the latest version, and purged the temp. It works for an hour, then it comes back, then I have to purge again, again, and again. Whats the deal here?

Could you provide an example of the code that was updated? I would like to manually make the override (without keeping users from being able to upload photos). (We are not ready to update yet, about a month out, and need to make this change manually.)

I had the same problem, but Siteground quarantined the site before it could infect anything else. $200 later, clean and rid of the malware. Looking for a replacement for UM.

When this hit me I found WordPress core code infected too. I found corrupted code in the index.php file in the root directory and unknown php file in the /includes/images/smiles directory in the core code.

Me, too. It was everywhere.

chaneydeb92,

I highly suggest not going with another user solution. I’ve been in business for almost 10 years with the same site, and have tried every (and I mean EVERY other option paid/free). These guys are the best, and they patched this security issue within a day of hearing about it. Other plugin builders take weeks a lot of time.

Save yourself the frustration because no other social plugin is as good.

• This reply was modified 6 years, 3 months ago by ericgolftourney. Reason: Wrong name

Jeepers! I have just started trialling UM on a new site. Reading just one page of support topics has me double backing to consider another option.

Way too many problems for one plugin. :\

@slocs read my comment above to chaneydeb92.

@ericgolftourneygmailcom Thanks for caring enough to reply. ??

• This reply was modified 6 years, 3 months ago by slocs.

Hi @vishwasbecs, @matty11127, @chaneydeb92, @slocs,

I’m sorry to hear that you have malware issues due to a security vulnerability that we’ve patched earlier. We take this issue very seriously and ask you to submit a new support ticket on our website so we can help you to fix this issue and remove malicious files. Please go to this page on our website and click on “I’ve read the pre-purchase FAQs & want to ask a question”

Thanks.

We having the same issue. ??

Hello guys, we have same issue, can you send here witch files are infected, I begin to add a new WordPress installation and setup again theme and plugins.

We’ve had issues as well and have installed Wordfence to help protect the site. However, Wordfence is showing two critical issues:
– WordPress core file modified: index.php; and
– WordPress core file modified: wp-settings.php

Hope you can get this fixed properly very soon

@ultimatemembersupport could you please describe the vulnerability that was discovered in the release? We have a problem that has just occurred in the last few days involving redirects to valusc.com on a couple of WordPress sites that utilize this plugin. Has it been found that this intrusion can affect the filesystem?