Hi there,
This external plugin is available through X. Last night installed and this mornig my website got defaced
They get in posting to the plugin upload feature:
194.140.192.8 - - [03/Oct/2018:09:55:34 +0200] “POST /wp-admin/admin-ajax.php?action=lfb_upload_form HTTP/1.1” 200 31 “-” “python-requests/2.18.1”
194.140.192.8 - - [03/Oct/2018:09:55:35 +0200] “POST /wp-admin/admin-ajax.php?action=lfb_upload_form HTTP/1.1” 200 31 “-” “python-requests/2.18.1”
194.140.192.8 - - [03/Oct/2018:09:55:35 +0200] “POST /wp-content/uploads/CostEstimationPayment/_/ngfndfgsdcas.tss HTTP/1.1” 405 166 “-” “python-requests/2.18.1”
194.140.192.8 - - [03/Oct/2018:10:18:10 +0200] “POST /wp-admin/admin-ajax.php?action=lfb_upload_form HTTP/1.1” 200 31 “-” “python-requests/2.18.1”
194.140.192.8 - - [03/Oct/2018:10:18:11 +0200] “POST /wp-admin/admin-ajax.php?action=lfb_removeFile HTTP/1.1” 200 31 “-” “python-requests/2.18.1”
194.140.192.8 - - [03/Oct/2018:12:38:34 +0200] “POST /wp-admin/setup-config.php?step=2 HTTP/1.1” 200 707 “-” “Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.75 Safari/537.36”
194.140.192.8 - - [03/Oct/2018:12:39:34 +0200] “POST /wp-admin/install.php?step=2 HTTP/1.1” 504 578 “-” “Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.75 Safari/537.36”
Can this plugin be fixxed of removed for now untill it gets fixxed?