WordPress.org

Ready to get started?Download WordPress

Forums

Theme-Check
[resolved] File contains suspected malware (4 posts)

  1. underclass
    Member
    Posted 8 months ago #

    wordfence is issuing the following errors since the update to theme check;

    File contains suspected malware URL:
    /wp-content/plugins/theme-check/lang/theme-check.pot
    /wp-content/plugins/theme-check/checks/worms.php

    This file contains a suspected malware URL listed on Google's list of malware sites. Wordfence decodes base64 when scanning files so the URL may not be visible if you view this file. The URL is: http://creativebriefing.com/wordpress-hacked-googlerankinfo/%5C - More info available at Google Safe Browsing diagnostic page.

    http://wordpress.org/plugins/theme-check/

  2. beggers
    Member
    Posted 8 months ago #

    Same thing here. I just deleted the plugin and its files.

  3. Samuel Wood (Otto)
    Tech Ninja
    Plugin Author

    Posted 8 months ago #

    Hah. VaultPress told me the same thing.

    The "worms.php" file does not contain any malware. Quite the opposite, in fact. It contains a few checks with some known malware signatures, and it's using those to check themes for that same malware. The theme-check.pot file contains some of those strings as well.

    This is a false positive. Theme Check is fine. Wordfence is incorrect.

  4. Maarten
    Member
    Posted 8 months ago #

    Thanks Otto!

Reply

You must log in to post.

About this Plugin

About this Topic

Tags