[ad_1]
No I will not tell you my site name, but this has happened 2 times already on different sites using different plugins and maybe 1 in common. Must admit, I sometimes go months without making updatea, but how did they get in ?
I am mad, and really need to know how they managed to upload a file to my public_html folder ? Has anyone seen this one before ?
Who is your host? Does your host have “log in to WP” button on their control panel? It’s fairly common. Check with them first.
Also look at the code in the file – does it look strange or malicious?
Also install Wordfence and run a scan.
If you have Null plugins, they are the source of your problem.
If all your plugins are updated, and valid, then it’s your host getting compromised, I think. Or a weak common password.