I found a hidden PHP file in my WordPress ROOT. Can someone please confirm if its a Backdoor and I should delete it or is this file safe?
The file name is:
.wysiwygPro_preview_2cc37e731786ff9b24157cd9f049b9cb.php
And its contet:
<?php
if ($_GET['randomId'] != "h6wErVoQiTtcfJOQAXxRY56_1NdgoGfVy_NpD4ecgtbBjp6URh8lF") {
echo "Access Denied";
exit();
}
display the HTML code:
echo stripslashes($_POST['wproPreviewHTML']);
?>
Can someone please tell me if its dangerous to have such code on server or its safe? Thank you for your comments and thoughts on this code :)