Web Hosting
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

WordPress fix malicious code inject

Discussion in 'Misc WordPress Requests' started by yellofish, Oct 8, 2017.

  1. yellofish

    Guest

    malicious code inject, by yellofish

    I have the latest WP version and just had a malicious code injection.

    I wonder, how can that happen, and what can be done for future protection?

    On 2 domains some directories had been tempered with and had a brand new change date.

    They were on one domain:
    wp-content/themes/twentysixteen
    wp-content/themes/twentysixteen/template-parts

    The twentysixteen theme was installed, but another theme was active. It was updated to the latest version though (WP updates themes no matter they are active or not)

    The other domain:
    wp-includes/rest-api
    wp-content/plugins/wp-members/admin

    wp-members is popular plugin that gets often updated?

    So how to prevent such malicious code injections? Or if they happen, how to notice them?

    malicious code inject
     
    #1

Share This Page

Web Hosting