wordpress content hack

Advert test
Status
Not open for further replies.
#1
hi does anyone know how to effecently block pharma hacks on wordpress posts i have seen the following info posted on some of the posts on the site


<!--82ec1451--><a href="http://buy-windows-7-ultimate-lol.com"> Buy Windows 7 Ultimate</a>
<a href="http://buy-windows-7-ultimate-lol1.com"> Cheap Windows 7 Ultimate</a>
<a href="http://buy-windows-7-ultimate-lol2.com"> Sale Windows 7 Ultimate</a>
<a href="http://windows-7-ultimate-lol.com"> Sale Windows 7 Ultimate</a>
<a href="http://buy-adobe-creative-suite-6-master-collection-lol.com"> Adobe Creative Suite 6 Master Collection</a>
<a href="http://buy-adobe-creative-suite-6-master-collection-lol2.com"> Order Adobe Creative Suite 6 Master Collection</a>
<a href="http://buy-adobe-creative-suite-6-master-collection-lol1.com"> Discount Adobe Creative Suite 6 Master Collection</a>
<a href="http://buy-microsoft-office-2010-professional-plus-lol.com"> Sale Microsoft Office 2010 Professional Plus</a>
<a href="http://buy-microsoft-office-2010-professional-plus-lol1.com"> Sale Microsoft Office 2010 Professional Plus</a>
<a href="http://buy-microsoft-office-2010-professional-plus-lol2.com"> Microsoft Office 2010 Professional Plus</a>
<!--82ec1451-->


I have checked hardening your wordpress posts and have tried edit the .htaccess file but if there is specific actions to take I would like to know . I have even changed the chmod but still info was injected


thanks
B
 

mneylon

Administrator
Staff member
#2
Check permissions
Check the plugins you're using
Most hacks are due to something not being "right" ie. bad permissions or some other vulnerability via an out of date plugin or theme
 
#3
Check permissions
Check the plugins you're using
Most hacks are due to something not being "right" ie. bad permissions or some other vulnerability via an out of date plugin or theme
cab i jsut remove the write permission once the plugin is installed i try to use as little plugins as possible and try to achieve as much as I can without them

thanks
B
 
K

Kieran

Guest
#4
It probably isn't the plugin but the permissions that are setup on the WordPress site in the first place. You may have inherited the site and at some stage the permissions may have been screwed up.

Quote unusual to see a post have content in them unless your database has been compromised. Are you sure that these are in the post and not in some widget / footer somewhere ?
 
Status
Not open for further replies.
Top