“Generally this happens when someone has mistakenly put index.php from a theme in the WP install folder, where it overwrites the index.php that is the main WordPress file. Download WordPress again, and take the one file, index.php from its root folder, replacing the file you now have as index.php It sometimes means someone has loaded … Read more
WordPress installer attack
Bruteforce attack from 127.0.0.1?
Many themes echo the post author names associated with posts. Those are in some cases the same as the username. The author archive links, depending on the permalink can reveal the username as well– /author/admin Getting the username is fairly trivial. I am sure there are other ways to manage it.
Should be the transient(cache files) of the plugin wp-less that convert the css code in less through a compiler. After downloading wp-less check the compiler.class to see how the plugin cache the code. I don’t think this is hacking.
Some code is added automatically to my site’s header – what is it?
As far as I can think of this is a server issue. This has happened to me once due to server crash. I hope you have a backup of your files.
I fixed it by BBQ: Block Bad Queries plugin: https://wordpress.org/plugins/block-bad-queries/
To answer your question, you can find the original file in the WordPress Github repository. However, when a WordPress website is hacked and has malware infected files it is recommended to reinstall the entire site with a clean install (without plugins), check the database for infected entries and change all (WordPress, database, etc) passwords. When … Read more
You can check the WPScan Vulnerability Database The vulnerabilities are classified in ‘WordPress’, ‘Plugins’ and ‘Themes’ at the top bar, from 2014 on. Cheers