All community developed PHP applications are patched as & when new vulnerabilities are discovered. So you should upgrade/patch PHP applications in your website from time to time. Failing to upgrade/patch PHP applications in your website is equal to opening a backdoor for the hacker on your website.
A backdoor shell is a malicious piece of code (e.g. PHP, Python, Ruby) that can be uploaded to a site to gain access to files stored on that site. Once it is uploaded, the hacker can use it to edit, delete, or download any files on the site, or upload their own.
This is a rising trend and every individual needs to keep a track of the actions carried on their sites. Any attempts to put in Malware or Script Injections on an account occur mostly due to the following reasons:
- Improper write permissions are set for any of your files/directories on the web server. Please make sure that none other than extremely required folders have to write permissions for users.
- Your FTP details are compromised.
- The Local System from where you connect to the Web Server is infected.
- Known exploits in CMS applications
Hence to resolve vulnerability issue, you could take the following steps:
- Download the current content of your site and perform a security audit on every file of your site. Check through the code to see if there are other files too infected with the IFRAME injections.
- Clean all such files.
- Change your FTP passwords to stronger ones. Keep changing the passwords frequently.
- Scan your local system with some good AntiVirus and Malware remover, to make sure your system is also infection free.
- Upload all new file again to the server.
- Avoid 777 permissions on any file or folder.
- Change both the FTP user and database user password so that the database is not injected.
- Always use updated version of CMS and themes/plugins.
- Ensure that all the themes and files are of latest versions.