Website Got Hacked – Fixed – Now Cannot Activate Theme

Issue 1: Look at your dashboard; you’re not logged in as an administrator, and as a result you don’t have the privileges and can’t activate themes or plugins.

With adminer or phpmyadmin, check your wp_usermeta table for your user and be sure the wp_capabilities key is for an admin: a:1:{s:13:"administrator";s:1:"1";}

Or, add a new admin via SQL:

INSERT INTO `*yourdatabasename*`.`wp_users` (`ID`, `user_login`, `user_pass`, `user_nicename`, `user_email`, `user_url`, `user_registered`, `user_activation_key`, `user_status`, `display_name`) VALUES ('999999', '*yourusername*', MD5('*password*'), '*yourfullname*', '*youremail*', '*http://example.com*', '2016-01-01 00:00:00', '', '0', '*yourfullname');

INSERT INTO `*yourdatabasename*`.`wp_usermeta` (`umeta_id`, `user_id`, `meta_key`, `meta_value`) VALUES (NULL, '999999', 'wp_capabilities', 'a:1:{s:13:"administrator";s:1:"1";}');

Replace *examples* with user name, real name, password (in plain text), etc. The user_id is set to 999999 to avoid collisions with existing user IDs.

Issue 2: Be sure you have carefully followed FAQ – My Site Was Hacked – WordPress Codex. You may not have done a complete job cleaning the hack. Then take a look at the recommended security measures in Hardening WordPress – WordPress Support and Brute Force Attacks – WordPress Codex

Related Posts:

  1. FTP credentials on localhost [duplicate]
  2. Unable to locate WordPress Plugin directory. ftp_base not working?
  3. Plugin installation not possible / FTP credentials in WP-config
  4. Valid Connection Information is Getting Denied
  5. PHP Fatal error: Call to undefined function wp_cache_get() in /var/www/vhosts/visisite.com/httpdocs/wp-includes/functions.php on line 1367
  6. Why wordpress cannot write to directory and how to fix it?
  7. How to edit page content after downloading the site files
  8. Upload files only on FTP
  9. FTP installation of WordPress
  10. SSH Server with WordPress
  11. Download PHP and CSS from the WordPress admin page without FTP
  12. How to cause the WordPress web interface to update via FTP
  13. WordPress FTP Error: “Failed to connect to FTP Server”
  14. Does WordPress still ask for FTP credentials for each file operation?
  15. How I do I host a simple html file through wordpress? (see details) [closed]
  16. FTP or Cpanel installation of WordPress
  17. What determines initial file permissions when a WP theme folder is uploaded manually with an FTP client? [closed]
  18. FTP Connection Information after Installation in Cygwin
  19. How to auto upload image from external source(computer) to webpage
  20. WordPress change homepage link (htaccess) (index)
  21. Upload and configure WordPress
  22. ftp not retrieving my directory file ,anyone have solution?
  23. FTP connection information + warning lines appearing on the homepage of my campsite?
  24. Failed to connect to PC:21 – WordPress & XAMPP
  25. FTP file manager AS wordpress site
  26. How to stop repeated hack on header.php of custom theme? [closed]
  27. Is there any way to ftp into wordpress if I paid for my own domain? I want to set up google analytics
  28. WordPress not syncing with FTP
  29. file compressed the content on single line after upload in wordpress
  30. How to use rsync over FTP
  31. Using wget to recursively download whole FTP directories
  32. Is there a Public FTP server to test upload and download?
  33. Differences between SFTP and “FTP over SSH”
  34. How can I view and edit specific aspects of playerdata from my Minecraft server?
  35. WordPress asking for my FTP credentials to install plugins
  36. How can I stop WordPress from prompting me to enter FTP information when doing updates?
  37. Import WordPress xml file larger than 8mb
  38. Scanning Database for malicious Data
  39. Why does WordPress still not support SFTP?
  40. WP Config for FTP credentials
  41. Websites defaced by uploading script using theme editor
  42. Migrate localhost to server
  43. How can I find security hole in my wordpress site?
  44. Has anyone experience w/ WordPress (MultiSite) hidden users (possibly hacked)?
  45. How to prevent bot or someone to modify any file automatically?
  46. How to upload a media file via FTP and then create an attachment post with it?
  47. How do i disable/disallow and tags in TinyMCE?
  48. How to import 55k images (uploaded via FTP) into WordPress Media libary? [closed]
  49. Unfamiliar query string in Google Search Console URL not found
  50. WordPress Images Not Showing When FTP
  51. Strange gibberish JavaScript in Editor – site hacked?
  52. wp-config.php modified?
  53. enable SFTP via SSH keys in wordpress
  54. Suspicious Files
  55. Files automatically added
  56. WordPress asking for FTP details when installing plugins
  57. How do the pros code up a WordPress theme? Locally? Through FTP?
  58. Prevent WordPress installing plugins and themes via Admin
  59. WordPress isn’t reflecting changes I make to a specific file via FTP [closed]
  60. wp-admin folder removed by hacker [closed]
  61. Install and Update plugins on a VPS WordPress installation
  62. How to fight this wp-info.php exploit? [closed]
  63. Unable to access wordpress login.php [closed]
  64. wordpress css file
  65. Download images from media library to computer in BULK?
  66. Prevent Hacking of WordPress Site [closed]
  67. What can I do when an outside party hacks into my weblog and changes my display name?
  68. Instant install of wordpress
  69. failed to open stream: Permission denied for WordPress plugin
  70. Server hacked: correct contents of wp-uploads directory? [closed]
  71. WordPress Installed But Not Showing Up! [closed]
  72. Clean installation missing its /wp-content folder
  73. Failed: Filesystem preventing downloads. ( ftpext)
  74. disabling ftp on wordpress
  75. FTP + Unable to locate WordPress content directory (wp-content)
  76. “Backdoor-list.txt” files unexpectedly in server
  77. Can’t access htaccess [closed]
  78. Replace domain in database
  79. Impossible to index an upload folder with 10k files
  80. FTP not working on a specific WordPress site but working on others (and Filezilla) [closed]
  81. In a local wordpress installation, when I install a plugin it only offers me installation via FTP
  82. Broken theme, stylesheet is missing after uploading the right theme via FTP
  83. my wordpress configuration locally vs live server
  84. FTP access to NAS drive files/folders from WordPress site
  85. Javascript Injection on my WordPress Site
  86. malware in wordpress installer on dreamhost. [closed]
  87. WP-admin plugin installation via FTP silently fails on shared hosting
  88. CSS updates appear after delay [closed]
  89. How to display the date a directory folder on ftp was modified
  90. Changing themes on locally hosted webpages
  91. Second completely independent and disposable WordPress installation in subdirectory?
  92. Plugins upload to wordpress in wampserver via filezilla
  93. Uploading a external squeeze page within WP
  94. Do I need FTP set up to upload files to wordpress server
  95. suspicious boolean.php file in wp web root [closed]
  96. My WP site and password was hacked, what to do? [closed]
  97. ERROR: Cookies are blocked due to unexpected output – no access to FTP
  98. Allow SFTP but disallow SSH?
  99. WordPress Redirect Hack
  100. I can’t log into my website , it says “Error: Cookies are blocked due to unexpected output”
error code: 523