Old WordPress Blogs are Being Hacked!

By Mike Liebner • on September 8, 2009

If your old WordPress Blogs are Being Hacked I have some help for you!

I woke up to a HUGE hassle as I discovered some of my WordPress blogs have been hacked and screwed with. I hate that! Why do people have to do this kind of stuff!

Here is the lowdown.

Apparently on versions of WordPress prior to 2.8.4 there is a vulnerability that allows access as an “additional” yet hidden admin, and as such they can do some damage while in the blog.  Running scripts and such…

As far as I can tell what they did to a few of my personal blogs was screw with permalinks so that the URL’s that Google had indexed went to error pages instead of the proper permalink URLs. They just showed an error page instead. That can be bad as Google has something different indexed.

If you find yourself in this situation I suggest you visit these 2 pages. They have a ton of helpful info.

> wordpress-permalink-rss-problems

> old-wordpress-versions-under-attack

If you are not sure if you have had problems – do this – GO to google and check out how many pages are indexed for your site by entering in site:articleblog.articleunderground.com

In my case here is the results URL

Start clicking around to see if you get any pages that have errors instead of showing the right pages.

Also – alternately – login as admin to your blog and go to USERS and see how many they show for Administrators – if it shows MORE than is visible – such as (2) and you only see (1) username (your own) then they got you.

The solution is in the above links – I’l spare rehashing the fix – but youneed to get rid of the extra admin PLUS upgrade your install of WordPress to prevent it from happening again.

Hope that was helpful!

Comments

By Chews-4-Health on November 13th, 2009 at 2:07 pm

This blog looks very nice!

By mindworkz on January 9th, 2010 at 3:21 am

Over 15000 free online games

By Mike on February 24th, 2010 at 1:39 pm

2-24-10

another old wordpress was hacked

it was version 2.8.4

They got in and added a new hidden admin and managed to set up REDIRECT on pages so that they went to THEIR AFF PAGES

Source was not able to be viewed

I fixed this by UPGRADING to 2.9.2 (automatically in this case)

Then EXTRA admin became UNHIDDEN so I deleted that user and then I uploaded files from SERVER to analyze

AVG would not let me upload header.php in the MontTiara THEME

So I replaced that with old header.php and it now works fine as far as I can tell.

Leave a Comment