Threat actors were observed installing the abandoned Eval PHP plugin on compromised WordPress sites for backdoor deployment. Researchers from Sucuri warned that threat actors are installing the abandoned Eval PHP plugin on compromised WordPress sites for backdoor deployment. The Eval PHP plugin allows PHP code to be inserted into the pages and posts of WordPress […]
The post Abandoned Eval PHP WordPress plugin abused to backdoor websites appeared first on Security Affairs.
This article has been indexed from Security Affairs
Read the original article: