Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the copy-the-code domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /var/www/html/pcx3.com/wp-includes/functions.php on line 6121

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the pb-seo-friendly-images domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /var/www/html/pcx3.com/wp-includes/functions.php on line 6121

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the johannes domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /var/www/html/pcx3.com/wp-includes/functions.php on line 6121
Three Column Screen Layout WordPress Plugin 🔴 Exploit - PC✗3
Are you a 🤖?
Search
Search
Three Column Screen Layout WordPress Plugin 🔴 Exploit
Add comment
Share:XRedditLinkedIn

Three Column Screen Layout WordPress Plugin 🔴 Exploit

April 5, 2021

Another website got hacked and the owner noticed weird chinese characters in search results for his website.

weird chinese characters
weird chinese characters

The index.php file contained the following code:

decoded 1024x542 - Three Column Screen Layout WordPress Plugin 🔴 Exploit

Initially, the point of entry for this malicious code was a plugin named Three Column Screen Layout that has a vulnerability which as many other WordPress users report is being actively exploited in the wild.

The POST request that injected this code was uploaded via an AWS IP.

The Three Column Screen Layout WordPress plugin was installed several times under random names:

Three Column Screen Layout WordPress Plugin Exploit
Three Column Screen Layout WordPress Plugin Exploit

After cleaning up the website we requested a review from Google via search console to remove the Dangerous site ahead warning.

Share:XRedditLinkedIn
whoami
Stefan Pejcic
Join the discussion

I enjoy constructive responses and professional comments to my posts, and invite anyone to comment or link to my site.

You may also like

Menu