WP-VCD

WP-VCDwp-vcd

Description

WordPress site owners should be on the lookout for a malware strain tracked as wp-vcd that hides in legitimate WordPress files and that is used to add a secret admin user and grant attackers control over infected sites. The malware was first spotted online over the summer by Italian security researcher Manuel D'Orso. The initial version of this threat was loaded via an include call for the wp-vcd.php file —hence the malware's name— and injected malicious code into WordPress core files such as functions.php and class.wp.php. This was not a massive campaign, but attacks continued throughout the recent months.

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
WordPress File Manager Plugin Remote Code Execution Vulnerability
CVE
CVE-2026-41934
CVE
CVE-2016-20064
CVE
WordPress Snap Creek Duplicator Plugin File Download Vulnerability
Software
VHD
CVE
CVE-2026-6443
Sourced from MITRE ATT&CK Enterprise . Curated by Adam Lundqvist, SQUR.