Cornerstone false/positive in Imunify firewall

  • Resolved Simon

    (@simonskaar)


    5 years, 8 months ago

    It seems like Imunify 360 is blocking a version of Cornerstone due to rule:
    64432 – JS.Inject.Typekit

    By Googling this, it seems like many people are experiencing it.

    The file that contains the reason is:
    /wp-content/plugins/cornerstone/includes/classes/styling/class-font-manager.php

    I have reported this to the Imunify360 but I would also like to inform you about it as the file is instantly quarantined and results in a 500-error in the Malware scanner.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author Archetyped

    (@archetyped)

    5 years, 8 months ago

    Cornerstone does not contain any such file, so perhaps you are referring to a different plugin that may be using the same name.

    You should be able to find a link to the plugin’s official home page below the plugin’s name on your site’s plugin admin page. You may also be able to find information on getting support via the site where you downloaded/purchased the plugin.

    Moderator Jan Dembowski

    (@jdembowski)

    Forum Moderator and Brute Squad

    5 years, 8 months ago

    *Looks and removes modlook from topic.*

    There’s just nothing modlook’able here.

    Cornerstone does not contain any such file, so perhaps you are referring to a different plugin that may be using the same name.

    More likely the site is compromised.

    Please remain calm and give this a good read.

    https://codex.wordpress.org/FAQ_My_site_was_hacked

    When you have successfully deloused your site then consider giving this a read too.

    https://codex.wordpress.org/Hardening_WordPress

    Plugin Author Archetyped

    (@archetyped)

    5 years, 8 months ago

    @jdembowski apologies, it seemed like a misplaced thread about a plugin that isn’t part of WordPress’ official plugin directory may want to be handled by a mod.

    A quick Google of the file path mentioned by @simonskaar does indicate that there is a different plugin with such a path, so it seems more likely that the OP is referring to a plugin outside of WordPress’ official plugin directory, rather than a sign that the site is compromised.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Cornerstone false/positive in Imunify firewall’ is closed to new replies.