Support » Plugin: WooCommerce Waitlist » This plugin contains malware

Viewing 6 replies - 1 through 6 (of 6 total)
  • With any plugin, search online first to see if it has vulnerabilities that have been reported. If so, check to see if those issues were fixed before installing. WooCommerce is very insecure.

    dav74

    (@dav74)

    Hi @mohamedbasheerkp

    Did you get to the bottom of this vulnerability with the “WooCommerce Waitlist” plugin? I too use this plugin and a bit worried about your comments. Did you find an alternative to this plugin?

    Basheer

    (@mohamedbasheerkp)

    No. I’ve uninstalled it after detecting it. I don’t know it’s source.

    https://wordpress.org/plugins/atum-stock-manager-for-woocommerce/
    This plugin also had the malware.

    I’ve installed GOTMLS (https://wordpress.org/plugins/gotmls/) and removed affected files. Don’t know the source of the malware. It just pumped by CPU and RAM usage to rocket high. Luckily I was on a VPS. If you are on shared hosting, your account will be banned by hosting providers.

    Plugin Author xootix

    (@xootix)

    Neither of the above plugins he mentioned has malware.
    One should be wise enough to judge by the reviews & active installations.
    Wordpress is a open community , anyone can post anything & we cannot respond every time to such idiotic claims

    • This reply was modified 3 months ago by  xootix.
    Basheer

    (@mohamedbasheerkp)

    What about the detected files in the plugin directories? Yes, I’ve installed seeing this reviews and active installation. I was happy with functionality also (Except it showed two waitlist links at the product page).

    Either you are trying to make money by exploiting the users (It showed ads and even the clicks redirected to other ad websites) or your plugin has been targetted by others. I don’t know and that you need to check.

    If you are a serious plugin author, the arrogance may not help you in the long run.

    te_taipo

    (@te_taipo)

    @xootix No, Woocommerce does not have malware in it, but in the past it has had security issues that would allow an attacker to install malware though right?

Viewing 6 replies - 1 through 6 (of 6 total)
  • You must be logged in to reply to this topic.