Bad source for original files

  • dropshot

    (@dropshot)


    10 years, 12 months ago

    Yesterday I received a modified plugin file alert:

    Modified plugin file: wp-content/plugins/easy-fancybox/easy-fancybox-settings.php

    When comparing the “original” and “modified” file I saw a lot of differences. I downloaded a fresh version of Easy Fancybox plugin to compare with my “modified” file. My “modified” file matches the REAL original version.

    Trying to understand Wordfence. From what source do you fetch these bad files that is stated to be the “original” versions?

    https://wordpress.org/plugins/wordfence/

Viewing 2 replies - 1 through 2 (of 2 total)
  • WFBrian

    (@wfbrian)

    10 years, 11 months ago

    We get them from the WordPress repository.

    http://docs.wordfence.com/en/Wordfence_options#Scan_plugin_files_against_repository_versions_for_changes

    Had you just updated to a newer version of the plugin in question? Sometimes developers update their plugin and forget to update the version number or they just keep the current version number with updates added. That would cause a mismatch on a scan.

    Thread Starter dropshot

    (@dropshot)

    10 years, 11 months ago

    Thanks for your reply.

    Ok. I used to think the WordPress Repository was the same as the Plugin Directory… Now I know it isn’t.

    I thought the files were compared with the available files in the Plugin Directory.

    It seems a bit confusing to me. If I receive the warning alert and compares the “modified” file with the file available in the latest version it might match, but still I will receive the alert.

    In the case with the Easy Fancybox plugin Wordfence seems to fetch a beta version file instead of the latest stable version. Why? Maybe the latest stable version and the new beta version has the same version number.

    I don’t know. I’m just trying to understand how to use Wordfence…

    Please see details in this topic
    https://wordpress.org/support/topic/new-version-same-version-number?replies=11

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Bad source for original files’ is closed to new replies.