simplepie in wp/includes URL injection

  • Hi
    Our site is marked as This site may be hacked in search results. GWMT points to wp-includes/SimplePie/HTTP/Film/12_mesiasev.html as the culprit of URL injection

    I cannot find relevant information about this file, the folders it’s contained in and their legitimacy.

    There are lots of files containing Russian text in wp-includes/SimplePie/HTTP/Film

    Is it safe to remove simplepie all together?
    What does simplepie do?
    I’ve not installed simplepie plugin nor is it listed in dashbaord plugins.

    In the meantime I found some malicious code in wp-admin/includes/revision.php and removed it. Not sure if the two issues are related.

    Thank you

Viewing 1 replies (of 1 total)

  • There are a number of WordPress plugins that compare your WordPress files against the official list of files. They will tell you if your files have modified or if there are ones that don’t belong. Search the repository for security plugins and try one that has features you’re interested and are also popular/well-rated.

Viewing 1 replies (of 1 total)
  • The topic ‘simplepie in wp/includes URL injection’ is closed to new replies.