The new variant from wordpress.net.in & qwetro.com used the “anonymous PHP create_function” to append their spam links on their victim blog. Below is quick patch to disabled the mischievous “create_function” injection on wp_head.
Entries Tagged as ‘wordpress’
Feb 29th, 2008 +0000 UTC
Blake Ross (The Co-Founder Mozilla Project) WordPress Blog’s Hacked
Blake Ross hacked by Blackhat SEO Spammer, blakeross.com is running WordPress 2.0.4 on Apache 1.3.39; its like waiting to be hacked.
Digg it → Co-Founder of Mozilla Project WordPress Blog’s Hacked
Screenshot
Note: There is known directory transversal exploit for WordPress 2.0.4 #4226
External Links
How to fix wordpress.net.in Goro Spam
WordPress 2.0.5 Changelog
Apache 1.3 Vulnerability
Dec 3rd, 2007 +0000 UTC
Matt Heaton (Bluehost and Hostmoster CEO) wordpress blog Hacked by Mick Jagger from Moscow
wordpress.net.in remote spam injection, Matt’s heaton unaware that he uploaded the backdoor himself. Check his wordpress footer.
Full cache on google will not show the spam link (cloaking) used text-only cache.
As of this time of writing he’s still using WordPress 2.0.
While you are on mattheaton.com footer check out the “Comment (RSS)” links. The “RSS” part [...]
