WordPress.org

Ready to get started?Download WordPress

Forums

IMDb link transformer
[resolved] Malicious code in IMDB link transformer? (3 posts)

  1. alexz
    Member
    Posted 3 years ago #

    When I ran the plugin "Exploit scanner" to check my WordPress-installation, it returned a lot of warnings just about this plugin, see for example: http://awesomescreenshot.com/0284xlb4

    How could I be sure that your code is not used to exploit my site?

  2. Samuel B
    moderator
    Posted 3 years ago #

    the author can likely speak for himself, but...
    it's true eval code can be used maliciously, but has many more legit uses

    the warnings are "false positives"
    you will likely run into the same thing with themes from time to time

  3. jcv
    Member
    Plugin Author

    Posted 3 years ago #

    Hi alexz,

    The best and smarter way to be certain that IMDb link transformer code is not used to exploit your site is... to look the code itself. It's open source, it's widely opened to everyone who wants to look inside.

    Warnings returned to you are related to Highslide (from http://highslide.com), a library used to display in a nicer way movie's pictures and datas; if you're not at ease with this library, unactivate "display highslide popup" from general IMDb link transformer options, and the library won't be used anymore.

    That's up to you.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic