SpamAssassin Rule: URI_WP_HACKED
Standard description: URI for compromised WordPress site, possible malware
The body of the email contains URIs that might indicate a compromised WordPress host. (e.g. contains links to php or html sources within "/wp-content/" or "/wp-includes/" directories.)
The default scores for this rule can be found in the online list of tests.