4
How did the file got there? Did you placed it there, or somebody uploaded it there?
It could be very much that your server is already compromised, i.e. the hacker has cracked your password, and can upload the files there anytime he wants. In such a case, regardless what new version of XOOPS you upload there, they will have the access to your Server.
You should change immediately all you passwords to the server, check the server logs, to see how the file got there...