I use the User Role Editor plugin alongside the WordFence plugin (which automatically scans every file in a WordPress installation for any changes on a daily basis, and alerts the admin to the changes - this is useful for detecting any security issues).
I currently use v3.12 of the URE plugin, and that was last updated on 2nd May. However, earlier today (6th May) two files were detected as being changed:
As WordFence scans the files every day, if these changes were made by updating the plugin (back on the 2nd May), then these changes would have been detected on the 3rd of May, not as late as the 6th.
I was under the impression that plugins could not be changed unless either the administrator had updated the plugin (or made some other change by directly coding and re-uploading the replacement file), or there had been some sort of security breach.
I have uploaded a screenshot showing what changes were made in ure-options.php. It can be viewed here.
I certainly haven't changed anything, so I am inclined to believe there has been a security breach. Can you please confirm whether or not it is possible for the plugin to update itself as appears to have happened here? Can you confirm if the changes in the code (in the linked screenshot) are legitimate?
Thanks in advance for your advice.