TechGasp | Comments Off on anonymousfox wordpress exploit entry points |
Anonymousfox exploits wordpress websites via vulnerable files to gain access to administrator accounts and root access to server. With root file access anonymousfox can easily escalate to your hosting cpanel access by editing the contact address and resetting the cpanel account password. Keep in mind that with cpanel access anonymousfox can cross contaminate other websites.
This tutorial applies to all TechGasp Joomla and Jomsocial components, modules and plugins and refers to their installation or update. Since TechGasp extensions are fully Joomla API integrated, no special steps are needed you just install or update them like any other Joomla extension.
We have decided to write a small tutorial on how to build several websites via sub-domains since our own websites and sub-domains just went through a major re-structure related to legacy implementations. The aim of this post is more organizational than technical “per se”, it relates to pre-implementation thoughts.
Let me start by saying that wordpress 4.x versions were awesome and with minimal releases, specially security releases… that means version 4 was solid as a rock. Not only that, versions 4.x also saw great many new improvements, do you still remember wordpress “Benny” from September 2014? Yeap, that was the official 4.x release. Many things have changed in a good way since those days and November 2019 will see the official launch of wordpress 5.x branch, 5.0 “Gutenberg”.