Version changes, Wordfence, and alerts for them.

This stems from an issue with Anti-Spam Bee plugin.

I will republish the problem here since WordFence reported the issue.

http://wordpress.org/support/topic/modified-plugin-files-without-update

Filename: wp-content/plugins/antispam-bee/antispam_bee.php
File type: Plugin
Issue first detected: 11 hours 33 mins ago.
Severity: Warning
Status New
This file belongs to plugin “Antispam Bee” version “2.5.9” and has been modified from the file that is distributed by WordPress.org for this version.

Filename: wp-content/plugins/antispam-bee/readme.txt
File type: Plugin
Issue first detected: 11 hours 33 mins ago.
Severity: Warning
Status New
This file belongs to plugin “Antispam Bee” version “2.5.9” and has been modified from the file that is distributed by WordPress.org for this version.

Filename: wp-content/plugins/antispam-bee/js/dashboard.js
File type: Plugin
Issue first detected: 19 hours 14 mins ago.
Severity: Warning
Status New
This file belongs to plugin “Antispam Bee” version “2.5.9” and has been modified from the file that is distributed by WordPress.org for this version.

The problem is, these alerts com up, however they are legitimate changes to the plugin. They’re in changesets.

My question is does WF check the file content versus the latest version of the file or the latest version of the plugin, and does it check changesets at all?

I would normally be incredibly concerned about vulnerabilities, but there were legitimate changes that showed up as unauthorized edits against the version. Please note that at no time was an update process used to update these files…otherwise this all would not be an issue.

http://wordpress.org/plugins/wordfence/