wp-login.php
file that secretly steals your WordPress login information.
WordPress Keylogger Injection

An injection into the
Popular Web Shell Variants Contain a Hidden Backdoor

Variants of popular PHP web shells have been popping up and analysis reveals that they contain a hidden backdoor used to steal the unauthorized access.
Magento PHP One-Liner Backdoor

Analysis of a PHP one-liner found injected on Magento ecommerce websites and learn how it is used by attackers.
WordPress Injection Exfiltrates Admin Login

wp-login.php injection silently exfiltrates a victim’s username and password back to the attacker’s server.
Gel4y Mini Shell by Indonesian Darknet

Another PHP web shell that promises it can bypass ‘server security’.