Hacked, restored, removed plugin, NOW HACKED AGAIN!!!

  • Resolved EmilianoD85

    (@emildebski)


    4 years, 5 months ago

    My website was hacked some weeks ago, through the loop hole in your plugin. I restored to a earlier malware free version of my website, deleted your plugin and guess what….I JUST GOT HACKED AGAIN THIS WEEK!!! I see all sorts of weird files as lock666.php and my frontpage is showing chinese letters only on a blank white page!!!

    WHAT IS THIS!?!?!? Please help me remove this bullshit once and for all!!!

    • This topic was modified 4 years, 5 months ago by EmilianoD85.

    The page I need help with: [log in to see the link]

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Support File Manager Support

    (@filemanagersupport)

    Hi @emildebski

    Please send us a support ticket by using this link https://filemanagerpro.io/contact, we would like to assist you with this.

    Thread Starter EmilianoD85

    (@emildebski)

    Done!

    Yes, my site was down, I found all bad js code in wp-file-manage, and it modify whole site index.php files, include other plugins’ and themes’ index.php and some js file, i remove all wrong code, the site still down.
    then i check my mysql, I have no way to solve this problem, because, the database has all been modified, i have to restore my backup, so i lost 1 days data.
    I have Wordfence, but not update.
    I have another site, but wp-file-manager version is 5.9, it it ok.
    have a new site have wp-file-manager version is 6.9 and the Wordfence is newest, now still have someone scan wp-file-manager, i have to delete this plugins
    The best solution is have to delete this plugins.
    If something goes wrong, the quickest solution is to restore, but maybe lost data.
    so, no matter what server is used, backup every day 1 time or 2 times!!!

    • This reply was modified 4 years, 5 months ago by tyrwxlyf.
    Plugin Support File Manager Support

    (@filemanagersupport)

    Hi @tyrwxlyf

    We take security very seriously and apologize to our community for any inconvenience or issues that have been caused. We urge users to update to the latest version, immediately since it contains a patch for this vulnerability and will keep you protected.

    Please update the File Manager plugin immediately to v6.9 if you are using File Manager Free, or to v8.0 if you are using File Manager Pro. Here is some documentation to assist you with the process: https://filemanagerpro.io/article/how-to-download-latest-version-of-file-manager-pro

    Send us a support ticket by using this link https://filemanagerpro.io/contact. We would like to assist you with any issue you are experiencing.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Hacked, restored, removed plugin, NOW HACKED AGAIN!!!’ is closed to new replies.