Zend Code Hack - What is it and how do I prevent it?

[Louey37]

I've just been told by my programmer that my WP site has a Zend Code hack. This is what he sent me as proof: $zend_framework="\x63\162\x65\141\x74\145\x5f\146\x75\156\x63\164\x69\157\x6e";

Apparently it's in my site header.

Is this bad or is he smoking crack? And does anyone know how I stop it happening again?

 

[mattseh]

php - server hacked on wordpress files? - Stack Overflow

You've probably been hacked.

 

[Louey37]

Cheers mate. I've got the coder fixing everything up now.

Quick question: I'm not technical based. Is there something I need to change on the server or is this just a site issue?

 

[bosshog]

It was probrably a wordpress exploit.. you may want to check for exploits that effect your currently installed version of wordpress and see if you find anything similar

 

[rish3]

This guy did some analysis on this exploit, might be helpful if you're trying to clean it up.
$zend_framework Wordpress Hacks | JustBeck | infosec musings