Title: hidden file possible vulnerability
Last modified: September 10, 2020

---

# hidden file possible vulnerability

 *  Resolved [unlockgenie](https://wordpress.org/support/users/unlockgenie/)
 * (@unlockgenie)
 * [5 years, 8 months ago](https://wordpress.org/support/topic/hidden-file-possible-vulnerability/)
 * my website has been redirecting users to other sites. after inserting this plugin
   I found a hidden file in .ico format. the file contained php encoded script. 
   it was also linked as an includee in my wp-config.php. can you please check your
   plugin for possible vulnerabilities.

Viewing 1 replies (of 1 total)

 *  Plugin Contributor [pronskiy](https://wordpress.org/support/users/pronskiy/)
 * (@pronskiy)
 * [5 years, 8 months ago](https://wordpress.org/support/topic/hidden-file-possible-vulnerability/#post-13388460)
 * [@unlockgenie](https://wordpress.org/support/users/unlockgenie/),
 * The plugin source is available in the WordPress directory: [https://plugins.trac.wordpress.org/browser/search-exclude/tags/1.2.6](https://plugins.trac.wordpress.org/browser/search-exclude/tags/1.2.6)
 * It shows all the files of the plugin. And there are no hidden files there. It
   also never touches any of your files including wp-config.php.
 * Moreover, WordPress plugin directory is analyzed for any malicious or vulnerable
   code.
 * With that said, the plugin is clear and secure. Looks like your website got hacked
   in some different way.

Viewing 1 replies (of 1 total)

The topic ‘hidden file possible vulnerability’ is closed to new replies.

 * ![](https://ps.w.org/search-exclude/assets/icon-256x256.png?rev=2916925)
 * [Search Exclude](https://wordpress.org/plugins/search-exclude/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/search-exclude/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/search-exclude/)
 * [Active Topics](https://wordpress.org/support/plugin/search-exclude/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/search-exclude/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/search-exclude/reviews/)

 * 1 reply
 * 2 participants
 * Last reply from: [pronskiy](https://wordpress.org/support/users/pronskiy/)
 * Last activity: [5 years, 8 months ago](https://wordpress.org/support/topic/hidden-file-possible-vulnerability/#post-13388460)
 * Status: resolved