Support » Plugin: Wordfence Security - Firewall & Malware Scan » Possible malware file, need verification

  • Resolved npiper

    (@npiper)


    Wordfence has flagged a file inside the Updraft folder as possible malware code: Filename: wp-content\plugins\updraftplus\vendor\phpseclib\phpseclib\phpseclib\Crypt\Base.php
    File Type: Not a core, theme, or plugin file from wordpress.org.
    Details: This file is a PHP executable file and contains the word “eval” (without quotes) and the word “unpack(” (without quotes). The eval() function along with an encoding function like the one mentioned are commonly used by hackers to hide their code. If you know about this file you can choose to ignore it to exclude it from future scans. This file was detected because you have enabled HIGH SENSITIVITY scanning. This option is more aggressive than the usual scans, and may cause false positives.

    Can someone verify for me that this is/isn’t malware and the proper steps to resolve this issue?

Viewing 1 replies (of 1 total)
Viewing 1 replies (of 1 total)
  • The topic ‘Possible malware file, need verification’ is closed to new replies.