Title: message from wordfence
Last modified: August 31, 2016

---

# message from wordfence

 *  Resolved [Kimbert](https://wordpress.org/support/users/kimbert/)
 * (@kimbert)
 * [10 years, 3 months ago](https://wordpress.org/support/topic/message-from-wordfence/)
 * Hello
 * Does anybody know what this means? Or is it spam?
 *     ```
       We don't usually see this kind of perfect storm, but we've just seen fixes for severe vulnerabilities in three WordPress plugins released in the same 24 hour window. One of them is a WooCommerce plugin. The vulnerabilities have already been disclosed on either the Bugtraq or Securityfocus mailing lists, so exploits may already be in the wild.
   
       Full details on our blog...
   
       Regards,
   
       Mark Maunder
       Wordfence Founder & CEO
       ```
   
 * [https://wordpress.org/plugins/woocommerce/](https://wordpress.org/plugins/woocommerce/)

Viewing 7 replies - 1 through 7 (of 7 total)

 *  Plugin Contributor [Mike Jolley](https://wordpress.org/support/users/mikejolley/)
 * (@mikejolley)
 * [10 years, 3 months ago](https://wordpress.org/support/topic/message-from-wordfence/#post-7049453)
 * Looks like he is not talking about WooCommerce itself [https://www.wordfence.com/blog/2016/02/three-wordpress-plugin-vulnerabilities-fixes-released/](https://www.wordfence.com/blog/2016/02/three-wordpress-plugin-vulnerabilities-fixes-released/)
 *  Thread Starter [Kimbert](https://wordpress.org/support/users/kimbert/)
 * (@kimbert)
 * [10 years, 3 months ago](https://wordpress.org/support/topic/message-from-wordfence/#post-7049458)
 * Hello Mike,
    Thank you for the reassurance because I just feel so insecure sometimes
   with thhe different plugins.
 * I have had a bad experience with one and I am terrified to click on any links.
 * What do think is the best way to be secure for our sites and our clients who 
   purchase on our sites?
 * thank you again,
    Kathleen
 *  Plugin Contributor [Mike Jolley](https://wordpress.org/support/users/mikejolley/)
 * (@mikejolley)
 * [10 years, 3 months ago](https://wordpress.org/support/topic/message-from-wordfence/#post-7049469)
 * Just keep up to date – most responsible developers will issue security patches
   before disclosure.
 *  Thread Starter [Kimbert](https://wordpress.org/support/users/kimbert/)
 * (@kimbert)
 * [10 years, 3 months ago](https://wordpress.org/support/topic/message-from-wordfence/#post-7049473)
 * ok will do thank you.
 * How about some sort of logo on our sites to reassure buyers?
 * Should I put up wordfence’s logo and others?
 * thank you
    K
 *  Plugin Contributor [Mike Jolley](https://wordpress.org/support/users/mikejolley/)
 * (@mikejolley)
 * [10 years, 3 months ago](https://wordpress.org/support/topic/message-from-wordfence/#post-7049481)
 * It’s not really likely that most ‘buyers’ know what WordPress is – run your site
   over HTTPs, and you can use trustseals from the SSL certificate providers perhaps.
 *  Thread Starter [Kimbert](https://wordpress.org/support/users/kimbert/)
 * (@kimbert)
 * [10 years, 3 months ago](https://wordpress.org/support/topic/message-from-wordfence/#post-7049495)
 * Will look at that.
 * Thank you Mike
 * K
 *  Thread Starter [Kimbert](https://wordpress.org/support/users/kimbert/)
 * (@kimbert)
 * [10 years, 3 months ago](https://wordpress.org/support/topic/message-from-wordfence/#post-7049615)
 * Hi again Mike
 * I have run a Stop spammers scan and the scan came up with these threats concerning
   Woo Commerce ( there were others but I wont put them up here)
 * On this site I had a problem at Xmas with a bad plug in that created alot of 
   spam emails and I noticed that some of them even tried to login to our site. 
   [http://www.thereddoorgallery.org](http://www.thereddoorgallery.org)
 * Does this code look strange to you?
    On line 18 this is in red ‘$key(); `
 * and line 19 this is in red too `$clazz(`
 *     ```
       18.	/home/thereddonv/www/wp-content/plugins/woocommerce/woocommerce.php 
144: return $this->$key();
       	19.	/home/thereddonv/www/wp-content/plugins/woocommerce/includes/gateways/simplify-commerce/includes/Simplify/PaymentsApi.php 
137: $object = new $clazz();
       ```
   
 * I have just received an email from Jetpack saying this site went down and is 
   back up again. It may have been my host site but I haven’t had any news from 
   them yet.
 * thank you for your help,
 * K
    thank you for looking at this.

Viewing 7 replies - 1 through 7 (of 7 total)

The topic ‘message from wordfence’ is closed to new replies.

 * ![](https://ps.w.org/woocommerce/assets/icon.svg?rev=3234504)
 * [WooCommerce](https://wordpress.org/plugins/woocommerce/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/woocommerce/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/woocommerce/)
 * [Active Topics](https://wordpress.org/support/plugin/woocommerce/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/woocommerce/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/woocommerce/reviews/)

## Tags

 * [woocommerce plugin](https://wordpress.org/support/topic-tag/woocommerce-plugin/)

 * 7 replies
 * 2 participants
 * Last reply from: [Kimbert](https://wordpress.org/support/users/kimbert/)
 * Last activity: [10 years, 3 months ago](https://wordpress.org/support/topic/message-from-wordfence/#post-7049615)
 * Status: resolved