Replies: 1
I’ve been an advanced wordpress user for close to 10 years and from what I understand there should be no way for anyone outside of that root user to make modifications to any of the files so I’m dying to know how this site was compromised at all. All plugin files and theme files(except for the active theme) were compromised.. It doesn’t look like the core files were compromised just plugins and inactive themes, which also had the same file perms as everything else.
Anyone have any ideas? What could I have done different to prevent this?