Title: suspected malware URL Last modified: August 30, 2016 --- # suspected malware URL * Resolved [lisamkarl](https://wordpress.org/support/users/lisamkarl/) * (@lisamkarl) * [10 years, 7 months ago](https://wordpress.org/support/topic/suspected-malware-url/) * I updated the event calendar today and just received a notification from Wordfence: * This email was sent from your website “Find It In Ashburn!” by the Wordfence plugin. * Wordfence found the following new issues on “Find It In Ashburn!”. * Alert generated at Thursday 15th of October 2015 at 03:40:35 PM * Critical Problems: * * File contains suspected malware URL: /home3/savvydig/public_html/finditinashburn/ wp-content/plugins/events-calendar-pro/vendor/lucatume/wp-browser/src/data/formatting/ xssAttacks.xml * Could someone tell me how to proceed please? * Lisa * [https://wordpress.org/plugins/the-events-calendar/](https://wordpress.org/plugins/the-events-calendar/) Viewing 5 replies - 1 through 5 (of 5 total) * Plugin Contributor [Brian](https://wordpress.org/support/users/brianjessee/) * (@brianjessee) * [10 years, 7 months ago](https://wordpress.org/support/topic/suspected-malware-url/#post-6652920) * Hello * Thanks SO much for bringing this up! * The good news is that there is no malware. You are totally fine. * The bad news is that it looks like we errantly included some of the files we use in development in the final release and need to remove them and repackage the plugin. * In the meantime, will you please revert back to 3.12.2? You can snag a copy of that here on this site by logging int and heading to My Account > Downloads. * I’m so sorry for the trouble here but am thankful you brought it up early so we can fix it ASAP. * Also since you are a Pro Customer we will respond to you quicker by posting in the commercial support forums here: * [https://theeventscalendar.com/support/forums/](https://theeventscalendar.com/support/forums/) * Thread Starter [lisamkarl](https://wordpress.org/support/users/lisamkarl/) * (@lisamkarl) * [10 years, 6 months ago](https://wordpress.org/support/topic/suspected-malware-url/#post-6653003) * You’re welcome. * Here on WordPess.org? If so, i can’t find My Account>Downloads. Lisa * Plugin Contributor [Brian](https://wordpress.org/support/users/brianjessee/) * (@brianjessee) * [10 years, 6 months ago](https://wordpress.org/support/topic/suspected-malware-url/#post-6653058) * Hi, * Nope on theeventscalendar.com * That is the only place you can get Pro. * We did release Pro 3.12.4 to fix this issue as well. * [DXMATZ](https://wordpress.org/support/users/dxmatz/) * (@dxmatz) * [10 years, 6 months ago](https://wordpress.org/support/topic/suspected-malware-url/#post-6653177) * The Events Calendar, regardless of version, is triggering a malware threat on sophos.com: [https://www.sophos.com/en-us/threat-center/threat-analyses/viruses-and-spyware/Mal~HTMLGen-A.aspx](https://www.sophos.com/en-us/threat-center/threat-analyses/viruses-and-spyware/Mal~HTMLGen-A.aspx) Sophos has flagged all versions of the plugin, because it only sees the “the- events-calendar” and not the version number. Sophos is also flagging any styling with “tribe-events” in the CSS. * When will Modern Tribe release a clean version of the non-pro plugin and get the tool off the threat list? * [Brook](https://wordpress.org/support/users/brook-tribe/) * (@brook-tribe) * [10 years, 6 months ago](https://wordpress.org/support/topic/suspected-malware-url/#post-6653186) * Howdy DXMATZ, * There are no known security vulnerabilities in our plugin. We have on extremely rare occasion found one or tow in the past, or had them reported to us, and they were promptly addressed. Sometimes even within 24 hours a patch was released. If you are aware of any vulnerability please privately disclose it to us and we will take prompt action. * Cheers! – Brook Viewing 5 replies - 1 through 5 (of 5 total) The topic ‘suspected malware URL’ is closed to new replies. * ![](https://ps.w.org/the-events-calendar/assets/icon-256x256.gif?rev=2516440) * [The Events Calendar](https://wordpress.org/plugins/the-events-calendar/) * [Frequently Asked Questions](https://wordpress.org/plugins/the-events-calendar/#faq) * [Support Threads](https://wordpress.org/support/plugin/the-events-calendar/) * [Active Topics](https://wordpress.org/support/plugin/the-events-calendar/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/the-events-calendar/unresolved/) * [Reviews](https://wordpress.org/support/plugin/the-events-calendar/reviews/) * 5 replies * 4 participants * Last reply from: [Brook](https://wordpress.org/support/users/brook-tribe/) * Last activity: [10 years, 6 months ago](https://wordpress.org/support/topic/suspected-malware-url/#post-6653186) * Status: resolved