WordPress injection?
Posted
by
saul
on Pro Webmasters
See other posts from Pro Webmasters
or by saul
Published on 2014-03-25T21:14:55Z
Indexed on
2014/05/28
22:07 UTC
Read the original article
Hit count: 317
I don't really know how to express my problem, so bear with me. This is a bit hard to explain.
I have a Wordpress installation, the latest, and often (once a day) my site redirects users to the /wp-admin/install.php
file. Asking for my login credentials of course. I have tried reinstalling WordPress and still have not been able to figure what they are doing.
That happens regularly. Also, a few hours later, I am able to see my site normally. Hope this makes sense.
I suspect there myst be some database DoS that allows them to inject a redirect of some sort into my admin area, thus redirecting the user to said directory (install.php
). But that's just me. I really have no clue what else could they be doing.
I looked at the source code from several php files and noted some of them don't include a ?> tag. Could that be an issue?
My hosting company is iPage, I've contacted them and they say there's nothing wrong with my files. Anyone have a clue? I can paste the code to any source file.
© Pro Webmasters or respective owner