database.sql warning

  • Resolved jess888

    (@jess888)


    5 years, 8 months ago

    Getting this warning from WordFence for the first time. False positive?:

    File appears to be malicious: wp-content/plugins/all-in-one-wp-migration/storage/5b7333a1de365/database.sql
    Type: File
    Issue Found August 14, 2018 4:13 pm
    Critical

    DETAILS
    Filename: wp-content/plugins/all-in-one-wp-migration/storage/5b7333a1de365/database.sql
    File Type: Not a core, theme, or plugin file from wordpress.org.
    Details: This file appears to be installed or modified by a hacker to perform malicious activity. If you know about this file you can choose to ignore it to exclude it from future scans. The text we found in this file that matches a known malicious file is: eval($_POST[. The infection type is: A suspicious code known as eval_of_POST. This file was detected because you have enabled “Scan images, binary, and other files as if they were executable”, which treats non-PHP files as if they were PHP code. This option is more aggressive than the usual scans, and may cause false positives.

Viewing 1 replies (of 1 total)
  • lesleysm

    (@lesleysm)

    5 years, 8 months ago

    This is likely to be a false positive. The storage folder is used to collate the backup file. There shouldn’t be files left in there as they are deleted once your backup completes. On rare occasions when the backup fails, there can be content left in the folder. You can delete these files.

Viewing 1 replies (of 1 total)
  • The topic ‘database.sql warning’ is closed to new replies.