Security Breach

  • Resolved oitent

    (@oitent)


    6 years, 4 months ago

    Hello, iPage locked all my installs and sites due to a security breach with the following:

    plugins/customer-area/libs/js/bower/fancytree/xprofiled.php: SiteLock-PHP-INJECTOR-1-ewp.UNOFFICIAL FOUND

    plugins/customer-area/src/php/core-addons/addresses/rtemplate.php: JCDEF.PHP.CMDSHELL-01N.UNOFFICIAL FOUND

    Other errors found were:

    themes/freedom/js/dfhstyle.php: SiteLock-PHP-BACKDOOR-GENERIC-aug.UNOFFICIAL FOUND
    uploads/2016/06/zyhtypes.pl: SiteLock-PHP-SHELL-et.UNOFFICIAL FOUND

    I’ve already deleted the files and they are reactivating my account.
    Regards,
    A.R.

    iPage Support Message:
    “Thank you for your patience and holding.
    Sorry, I have checked your account and currently it is suspended due to malware found on routine scan in your account, so CGI scripting too is disabled in your account.”

Viewing 1 replies (of 1 total)
  • Plugin Contributor Vincent Mimoun-Prat

    (@vprat)

    Hi,

    You website has been compromised but I do not think that has something to do with our plugin.

    First thing to do is to remove all malware, but most important is to find the root of the security breach. Probably a theme or a plugin which has not been updated in a while, or even your WordPress install.

    Regards,

Viewing 1 replies (of 1 total)
  • The topic ‘Security Breach’ is closed to new replies.

Tags