Author Topic: Malware found in Powerpress Plugin (Read 815 times)

WebWeaver · « **on:** April 11, 2013, 01:55:11 pm »

Sucuri.net found malware in this file on April 9, 2013 at 1:57 pm at DrMiller.com.

Malware found on file: ./wp-content/plugins/powerpress/powerpressadmin-editfeed.php

Sucuri cleared the malware, but how do I prevent this from happening again? The plugin is updated to the latest version.

Thanks,

-Cat

angelo · « **Reply #1 on:** April 11, 2013, 02:49:43 pm »

I've double checked the PowerPress zip files hosted on WordPress.org, where we distribute the PowerPress plugin from, there have been no cases of malware found. WordPress.org does a great job of monitoring all of the plugins for malware and viruses.

The malware was most likely added by scripts that were uploaded to your web site, usually through a vulnerability with either an outdated version of WordPress and/or some other web server or web application vulnerability. Could have also happened if you installed a theme or plugin from an unknown source (I only trust plugins and themes from WordPress.org). Either way, you need to contact your web hosting provider to see what they recommend, the hosting environment dictates how secure the server is.

Malware and server security is not a function that themes or plugins are supposed to deal with, this is specifically an issue you need to consult with your media hosting provider.

The Blubrry forum has been archived.

If you are a user of one of Blubrry's services, you can submit a support ticket here.

If you are using the Blubrry PowerPress plugin with a self-hosted WordPress site or a wordpress.com site, please use the PowerPress Plugin support forum.

Author Topic: Malware found in Powerpress Plugin (Read 815 times)

WebWeaver

Malware found in Powerpress Plugin

angelo

Re: Malware found in Powerpress Plugin