Webmaster Forum
Go Back   Webmaster Forums UK SEO SEM Webmaster Community Forum > General > General Webmaster Talk > Blogs and blogging > Word Press Forum
Register FAQ Members List Downloads Calendar Search Today's Posts Mark Forums Read Webmaster Resources Webmaster Blogs

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 03-27-2008, 05:39 AM
Senior Member
 
Join Date: Mar 2008
Location: Bucharest, Romania
Posts: 266
iTrader: 0 / 0%
kappa84 is on a distinguished road
Default New WordPress exploit

In simple words: this exploit creates a new folder (/wp-content/1/) in which it puts spamming html files.
You can read more here: New Wordpress 2.3.3 Exploit/Vulnerability - Adds Spam Directory /wp-content/1/ | Smackdown!
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Stumble this Post!
Reply With Quote
  #2 (permalink)  
Old 03-27-2008, 05:53 AM
brokencode's Avatar
Junior Member
 
Join Date: Mar 2008
Posts: 23
iTrader: 0 / 0%
brokencode is on a distinguished road
Send a message via Yahoo to brokencode
Default

Thanks for the info. I found that folder already installed in some wp blogs I have
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Stumble this Post!
Reply With Quote
  #3 (permalink)  
Old 03-27-2008, 06:12 AM
Senior Member
 
Join Date: Mar 2008
Location: Bucharest, Romania
Posts: 266
iTrader: 0 / 0%
kappa84 is on a distinguished road
Default

Have you find any sollution for that exploit?
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Stumble this Post!
Reply With Quote
  #4 (permalink)  
Old 03-27-2008, 07:06 AM
Senior Member
 
Join Date: Jan 2006
Posts: 770
iTrader: 0 / 0%
darkstar_tfd is a name known to alldarkstar_tfd is a name known to alldarkstar_tfd is a name known to alldarkstar_tfd is a name known to alldarkstar_tfd is a name known to alldarkstar_tfd is a name known to all
Default

Thanks for the info. I had no problems untill now.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Stumble this Post!
Reply With Quote
  #5 (permalink)  
Old 03-27-2008, 07:24 AM
rhyswynne's Avatar
Senior Member
 
Join Date: Nov 2007
Posts: 365
iTrader: 1 / 100%
rhyswynne is on a distinguished road
Default

I've double checked it and have not noticed anything.

Could the "put blank index.html files in directories" fix work?
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Stumble this Post!
Reply With Quote
  #6 (permalink)  
Old 03-31-2008, 08:49 PM
Senior Member
 
Join Date: Mar 2008
Posts: 78
iTrader: 0 / 0%
arunpattnaik is on a distinguished road
Default

I hate exploits. but i love wordpress anyways . Any solutions so far?
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Stumble this Post!
Reply With Quote
  #7 (permalink)  
Old 04-01-2008, 05:05 PM
xhan's Avatar
Design Photo & Graphics Admin
 
Join Date: Jan 2008
Location: London/Kent
Posts: 462
iTrader: 0 / 0%
xhan is on a distinguished road
Send a message via AIM to xhan Send a message via MSN to xhan Send a message via Yahoo to xhan
Default

one of my hostees had a file remv.php added to her wp directory - look out for that, It got my account suspended :S
__________________
Blog | Portfolio | Twitter

Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Stumble this Post!
Reply With Quote
  #8 (permalink)  
Old 04-01-2008, 05:10 PM
Senior Member
 
Join Date: Mar 2008
Location: Bucharest, Romania
Posts: 266
iTrader: 0 / 0%
kappa84 is on a distinguished road
Default

No sollutions yet, not that I could find..
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Stumble this Post!
Reply With Quote
  #9 (permalink)  
Old 04-01-2008, 06:00 PM
Junior Member
 
Join Date: Feb 2008
Posts: 9
iTrader: 0 / 0%
Tiger is on a distinguished road
Default

I think, you have to update your wordpress blogs to last version 2.5.5, that's the only solution I know actually. Before updating, modify your mysql password and FTP password and look for files that are not yours on your FTP.

What I don't understand is why some wordpress blogs have the issue and others not...
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Stumble this Post!
Reply With Quote
  #10 (permalink)  
Old 04-01-2008, 08:27 PM
xhan's Avatar
Design Photo & Graphics Admin
 
Join Date: Jan 2008
Location: London/Kent
Posts: 462
iTrader: 0 / 0%
xhan is on a distinguished road
Send a message via AIM to xhan Send a message via MSN to xhan Send a message via Yahoo to xhan
Default

it just depends if you come up on a hackers radar or not.

Theres sites out there listing all the hacks done by x person. My sites on one - grrr angry!
__________________
Blog | Portfolio | Twitter

Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Stumble this Post!
Reply With Quote
Reply


Useful Resources & Sites
Search Engine Marketing Company
UK Web Hosting
Build One Way Links
 
 
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT. The time now is 01:00 PM.

UK Webmaster World Forums - Internet marketing, web development, domain names, SEO contest and discussuons.
Subscribe to our feeds   Subscribe to our feeds

Powered by vBulletin® Version 3.7.0
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
LinkBacks Enabled by vBSEO 3.1.0