WordPress.org

Ready to get started?Download WordPress

Codex

Attention Interested in functions, hooks, classes, or methods? Check out the new WordPress Code Reference!

User:Here/Exploits

Known exploits and solutions

wp-info

Affected versions: 2.3.3 and older, possibly more

Symptoms:

  • Presence of wp-info.txt
  • Displayed version changed without upgrading.
  • Database modifications
  • New files ending in _new, _old, .pngg, .jpgg, .giff appearing inside writable directorie

Full details User:Here/Exploits/wp-info

ro8kfbsmag

Affected versions: 2.1.x and older

Symptoms include:

  • All plugins deactivated
  • All pages changed to posts

First seen: December 2007

Full details and fixes at User:Here/Exploits/ro8kfbsmag