Author: epeterso2 – WP Beacon

Alerts (0)

No open alerts.

Show 1 resolved alert

Critical code_pattern Joomla 1.5 Importer Resolved · direct_mysqli_legit_purpose_joomla_db_import 1mo ago

Slug	joomla-15-importer
Pattern	`direct_mysqli_connect`
Kind	`builtin`
Version	`1.0.0`
Hit count	2
First hit	File `joomla-15-importer.php` Line 177 Snippet $db = new mysqli( $db_info[ 'hostname' ], $db_info[ 'username' ], $db_info[ 'password' ], $db_info[ 'database' ], $db_info[ 'port' ] );
Explanation	plugin instantiates `new mysqli($var['host'], ...)` — a direct MySQL connection bypassing `$wpdb`. Legitimate WordPress plugins always go through `$wpdb` (which already has the connection); a raw `mysqli` connect using parsed wp-config credentials is the credential-harvesting backdoor shape.

View raw JSON

{
    "slug": "joomla-15-importer",
    "pattern": "direct_mysqli_connect",
    "kind": "builtin",
    "version": "1.0.0",
    "hit_count": 2,
    "first_hit": {
        "file": "joomla-15-importer.php",
        "line": 177,
        "snippet": "$db = new mysqli( $db_info[ 'hostname' ], $db_info[ 'username' ], $db_info[ 'password' ], $db_info[ 'database' ], $db_info[ 'port' ] );"
    },
    "explanation": "plugin instantiates `new mysqli($var['host'], ...)` \u2014 a direct MySQL connection bypassing `$wpdb`. Legitimate WordPress plugins always go through `$wpdb` (which already has the connection); a raw `mysqli` connect using parsed wp-config credentials is the credential-harvesting backdoor shape."
}

Plugins authored (1)

Plugin	Version	Installs	Last updated	Status
Joomla 1.5 Importer ·`joomla-15-importer`	1.0.0	50	15y ago	Active

SVN commit access (1)

Plugins this account has pushed commits to, reconstructed from plugins.svn.wordpress.org. A new name showing up here on an established plugin is the strongest ownership-transfer signal.

Plugin	Primary author	Installs	Commits	First	Latest	Status
Joomla 1.5 Importer	epeterso2	50	6	15y ago	15y ago	Active

ePeterso2

Alerts (0)

Plugins authored (1)

SVN commit access (1)