01-04-2014, 05:19 AM
![[Image: IDVm5kY.png]](http://>>>[[[Reported by Members as self-promotion. Please post the actual direct link!]]]<<</wp-content/uploads/2014/01/IDVm5kY.png)
01-05-2014, 12:36 AM
01-28-2014, 07:57 PM
03-03-2014, 09:14 AM
03-05-2014, 03:57 AM
(03-03-2014 09:14 AM)CyberPunk Wrote: [ -> ]I think this is the copy I downloaded that I decided to use. I downloaded about 3 different versions of v3.3.2 and found that a popular copy is floating around that includes a backdoor in it. This one did not have the backdoor :) So that is good.Thanks a lot for useful information's.
I used Beyond Compare and compared the files/folders between this copy and another copy. The other copy had an extra "social.png" file in the images folder (both in the main and admin directories). Then in the functions.php file at the very bottom, it had an include to the social.png file, which you do not "include" images with php. So they are using the png file to hide php code. The code is then Obfuscated, and it appears it has to do with SSL keys and connections. So most likely, it is a back door. Other than that, there are no other differences.
This was just an warning to others who have downloaded, or are going to download, the ClassiPress theme. Look in the images folder and if you see "social.png" and in the functions.php file, the last line includes that social.png image.. then you have a backdoored version. You can easily remove the image and include code, and it will be cleaned. Just make sure you do the same in both locations, as it is also in the /admin folder too.
Again, this copy is clean and legit.
I do want to point out, that the 2 version of ClassiPress provided are redundant. There is the "classipress" and "classipress-dev" versions included. They appear to have tried to share also the "Dev" version. However, the ONLY difference between the regular and dev versions are the dev version includes the PSD files. Since there are NO PSD files provided in these nulled releases, the dev version is no different and is not of any use. So it makes no sense lol.
So to install this.. upload one of the folders (doesn't matter as they are both the same) to your themes folder. Or you can "zip" one of the folders up, and use the Wordpess theme install feature from your Wordpress backoffice.
Thanks for the clean share :)
03-13-2014, 11:16 PM
thnx alot for your review
(03-03-2014 09:14 AM)CyberPunk Wrote: [ -> ]I think this is the copy I downloaded that I decided to use. I downloaded about 3 different versions of v3.3.2 and found that a popular copy is floating around that includes a backdoor in it. This one did not have the backdoor :) So that is good.
I used Beyond Compare and compared the files/folders between this copy and another copy. The other copy had an extra "social.png" file in the images folder (both in the main and admin directories). Then in the functions.php file at the very bottom, it had an include to the social.png file, which you do not "include" images with php. So they are using the png file to hide php code. The code is then Obfuscated, and it appears it has to do with SSL keys and connections. So most likely, it is a back door. Other than that, there are no other differences.
This was just an warning to others who have downloaded, or are going to download, the ClassiPress theme. Look in the images folder and if you see "social.png" and in the functions.php file, the last line includes that social.png image.. then you have a backdoored version. You can easily remove the image and include code, and it will be cleaned. Just make sure you do the same in both locations, as it is also in the /admin folder too.
Again, this copy is clean and legit.
I do want to point out, that the 2 version of ClassiPress provided are redundant. There is the "classipress" and "classipress-dev" versions included. They appear to have tried to share also the "Dev" version. However, the ONLY difference between the regular and dev versions are the dev version includes the PSD files. Since there are NO PSD files provided in these nulled releases, the dev version is no different and is not of any use. So it makes no sense lol.
So to install this.. upload one of the folders (doesn't matter as they are both the same) to your themes folder. Or you can "zip" one of the folders up, and use the Wordpess theme install feature from your Wordpress backoffice.
Thanks for the clean share :)
03-14-2014, 10:16 AM
07-03-2014, 08:04 AM