Is base64 code always a concern when found in files?
I'm asking because the plugin Exploit Scanner found it in several plugin files & in the wp-includes-class-wp-atom-server.php file.
Google Analytics for WordPress
My thinking is that I should re-install fresh copies of the plugins & a fresh WP-includes folder. Or do I only need the one file wp-atom-server.php?
Or is it sometimes a false positive, and sometimes supposed to be there?
Same with the "eval" code -- this also shows up in several of the plugins. Is that necessarily bad & the plugins should be re-installed?
Would be very grateful for someone more experienced to confirm or call me out... Want to clean it up, just don't want to break this site.