wpdefault - Backdoor Plugin



Description
Sucuri Labs found that the malicious wpdefault plugin was skimming payment data from WooCommerce stores.

Affects Plugin

no known fix

References

URL https://labs.sucuri.net/skimmer-plugin-hides-itself-from-wp-admin/

Classification

Type BACKDOOR
CWE CWE-912

Miscellaneous

Original Researcher Moe O (Sucuri)
Views 4258
Verified No
WPVDB ID 10096

Timeline

Publicly Published 2020-02-27 (4 months ago)
Added 2020-02-27 (4 months ago)
Last Updated 2020-02-29 (4 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin