• I’ve twice had my site hacked by someone uploading .php files to the wp-content directory. I’ve changed the option for fileupload_allowedtypes to exclude php, but there are some options I don’t understand – one is option_name = “rss_6d5bcd3d8fea86121658aa1f4767cf16” – there’s some others like that. Are these legitimate database entries? And will removing php as an upload type prevent further occurrences?

Viewing 1 replies (of 1 total)
  • Those are the feeds on the Dashboard and removing php as an upload type will prevent further occurrences from that avenue.

Viewing 1 replies (of 1 total)
  • The topic ‘wp_options content’ is closed to new replies.