rogue index.php

Does this mean my site has been hacked?

the site in your profile? the one running a version of wordpress that is over a year old and can be exploited by anyone able to copy and paste from milw0rm.com?

<meta name="generator" content="WordPress 2.2.1" /> <!-- leave this for stats -->

probably, and it may also be that that isnt the only incursion.

As for the next question:

you scour your site for anything malicious
you scour your database.
and you upgrade
you change ALL of your passwords, including your mysql password
you contact your host and let them know.

Theres more than enough info out there that goes through the details on all of that.

https://www.ads-software.com/search/hacked?forums=1
https://ocaoimh.ie/2008/06/08/did-your-wordpress-site-get-hacked/

Thanks for the info, but the site that was hacked was not the one in my profile, and was version 2.51
I will do as you suggest, as a beginner in the wordpress stakes I come back to the forum for help, the websites you have given me will help me prepare better.

It’s nice to be important, but more important to be nice.

2.51,

thats another story, and one I cannot speak to. Do, however upgrade that site in your profile, asap if its yours to do, though.

Donncha’s link ( the second ) might help you more than the first since he goes into some good detail.

bigcol – is this site on the same server as your old WordPress site?
Is this hacked site an upgraded site, or a brand new install?

The site is on another server, and it is an upgraded site using the auto-upgrade plugin.

Unfortunately your site was probably hacked before you upgraded, even if you upgraded on the day 2.5.1 came out. My post above has some useful info you should follow!

Thanks for the info I will chack things out

Caveat emptor or something like that