Thanks prasunen and kmessinger.
I wonder why some plugins have been infected and some others not.
I give you an example, Word Press Multilingual plugins (WPML) have 0 malicious code.
And I also wonder why “plugins” is the only folder that has been infected…
Why is this happening? If like you said prasunen, “FTP has been compromised” why I only get this malicious code in certain plugins and not everywhere? Has this something to do with the poor code practices behind those plugins?
I hope you can help me!
