Page 1 of 2 12 LastLast
Results 1 to 10 of 15

Thread: Blog defaced

  1. #1
    dodolls is offline Wide Traveler
    Join Date
    Aug 2009
    Posts
    40
    Thanks
    3
    Thanked 4 Times in 4 Posts

    Blog defaced

    One of my sites was defaced lately after I reinstalled wordpress. I decided to uninstall wordpress again, but the site still shows the defaced index page. Any ideas on what's the reason behind it?

    I had to remove everything in order to remove the defaced index page.

  2. #2
    bogart's Avatar
    bogart is offline Super Moderator
    Join Date
    May 2009
    Location
    New York
    Posts
    3,772
    Thanks
    1,886
    Thanked 776 Times in 609 Posts
    Make sure that you change the passwords and upgrade to the latest version of wordpress.

  3. #3
    garfish's Avatar
    garfish is offline I'm Not Sure.
    Join Date
    May 2009
    Posts
    848
    Blog Entries
    12
    Thanks
    155
    Thanked 57 Times in 54 Posts
    install the AntiVirus plugin
    AntiVirus for WordPress is a smart, effectively solution to protect your blog against exploits and spam injections.

  4. #4
    xxtoni's Avatar
    xxtoni is offline xxtoni
    Join Date
    Jan 2010
    Posts
    353
    Thanks
    16
    Thanked 42 Times in 34 Posts
    This reminds of the thing I did when I was younger xD
    But maybe the index file is still there,I once had this on a clients site,there wasnt a htm or php or any other index in the public_html/www folder,and I replaced the index.html but the site was still defaced,the host solved it somehow,so contacting them might be a option.

  5. #5
    sparckyz's Avatar
    sparckyz is offline Draconian Times
    Join Date
    Apr 2009
    Location
    in a house, duh! ;)
    Posts
    190
    Blog Entries
    5
    Thanks
    9
    Thanked 21 Times in 19 Posts
    Quote Originally Posted by whatthehell View Post
    install the AntiVirus plugin
    AntiVirus for WordPress is a smart, effectively solution to protect your blog against exploits and spam injections.
    I though WP was safe, but after reading this i think im gonna check that plugin out :P

  6. #6
    Mr.Bill's Avatar
    Mr.Bill is offline One is glad to be of service
    Join Date
    Dec 2008
    Location
    Redmond, Oregon
    Posts
    828
    Blog Entries
    1
    Thanks
    72
    Thanked 350 Times in 182 Posts

    Reverse IP Check ಠ_ಠ Proxy Sites
    <?php if ($youask == 'stupid question') { echo ('stupid answer'); } ?>

  7. Thanked by:

    bogart (17 May, 2010)

  8. #7
    dodolls is offline Wide Traveler
    Join Date
    Aug 2009
    Posts
    40
    Thanks
    3
    Thanked 4 Times in 4 Posts
    I think it's time to install the antivirus plugin for wordpress. The biggest mistake I did was to not upgrade Wordpress after reinstalling it.

  9. #8
    bogart's Avatar
    bogart is offline Super Moderator
    Join Date
    May 2009
    Location
    New York
    Posts
    3,772
    Thanks
    1,886
    Thanked 776 Times in 609 Posts
    Quote Originally Posted by dodolls View Post
    I think it's time to install the antivirus plugin for wordpress. The biggest mistake I did was to not upgrade Wordpress after reinstalling it.
    I'm guessing that they are using a password exploit. Upgrade the WP install and change the password for the user password for the sql db as well.

    I've had a lot of problems with wp blogs running version earlier than 2.7. Even on 2.7 a hacker got it and was able to make a post. But didn't deface the blog.

  10. #9
    Andy101's Avatar
    Andy101 is online now Code Otaku
    Join Date
    Aug 2009
    Location
    Kanazawa
    Posts
    1,313
    Thanks
    178
    Thanked 309 Times in 236 Posts
    Many WP plugins are insecure. Check that they use the "nonce" (Number Used Once) scheme when the options are updated.

    It may not be WP that is causing the problem, but one of the insecure plugins that you may have installed.

    Search on WordPress Nonce for more info.

    Basically, it is an easy way for plugin developers to validate that the options update was from the correct, trusted source.

    Normally this code appears after the Form tag in the options part of the plugin. Where it inserts a hidden form field. And where the options are updated in the PHP code, there should be some kind of check for the Nonce, referrer page and/or the user has admin rights before any changes are made.
    Otaku CMS - Import a WordPress blog and manage your site using single-page App technology

  11. #10
    xxtoni's Avatar
    xxtoni is offline xxtoni
    Join Date
    Jan 2010
    Posts
    353
    Thanks
    16
    Thanked 42 Times in 34 Posts
    It would be a shame if WP became the next Joomla,because this reminds me of the early days of Joomla.Most people think that Joomla is insecure,it really isn't,but since everybody is developing for it,it just has to happen,not even intentionally,not everyone is the best programmer in the world.The plugins tend to be the real culprits,they open back doors into the CMS and make it possible for hackers/script kiddies to exploit them and attack your site.

Page 1 of 2 12 LastLast

Similar Threads

  1. Replies: 0
    Last Post: 22 May, 2010, 22:37 PM
  2. [WTS] Blog Post and Blog Roll in PR 3+ Blog
    By linkseller in forum Links
    Replies: 0
    Last Post: 29 March, 2010, 13:36 PM
  3. Replies: 0
    Last Post: 15 January, 2010, 16:11 PM

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •