v1.7-v8x Panda Theme [v2.8.9] - Updated [09.01.2025] - PS 1.7 AND 8.0 - NULLED AND ACTIVATED
- Thread starter _aNoNiMo_
- Start date
Thanks so much for sharing this template
WARNING: PANDA THEME CONTAINS BACKDOOR - DO NOT USE URGENT SECURITY ALERT FOR ALL PANDA THEME USERS
I discovered a serious security backdoor in the Panda theme that allowed hackers to compromise my website. After being hacked and analyzing the
code, I found undeniable proof that the theme contains malicious code.
WHAT I FOUND:The theme contains a hidden "license validation" system that:
- Secretly connects to external servers every 15 days
- Sends your PrestaShop security keys (COOKIE_KEY, COOKIE_IV)
- Sends your domain information
- Can write files on your server
- Contains a suspicious "Goumaima" validation system
THE BACKDOOR:- Hidden server: biz236.inmotionhosting.com/~sunnyt7/
- Located in: ThemeLicense.php class
- Disguised as a "version check" system
- Runs automatically without your knowledge
WHY THIS IS DANGEROUS:1. Your security keys are compromised - Hackers can decrypt your passwords
2. Remote file access - They can upload malicious files
3. Hidden communication - Sends data without your consent
4. No legitimate license system - Panda doesn't require licenses
IMMEDIATE ACTION REQUIRED:If you're using Panda theme:
1. STOP USING IT IMMEDIATELY
2. Check for unauthorized files
3. Change ALL passwords and security keys
4. Consider switching to a legitimate theme
5. Scan your site for malware
This is not a legitimate ThemeForest version. The official Panda theme from ThemeForest does NOT contain license validation code. This appears to be
a modified/pirated version with intentional backdoors.
Please share this warning to protect others!
---Discovered after my site was hacked and thoroughly analyzing the code. This is a serious security threat.