WP Table Builder plugin false positive?

Resolved

(@jvmedia)

Updated the WP Table Builder plugin today then ran anti-malware scan and it returned: /wp-content/plugins/wp-table-builder/assets/templates/templates.csv

Just wondering if this might be a false positive?

Thanks

Viewing 4 replies - 1 through 4 (of 4 total)

Plugin Author Eli
(@scheeeli)

1 year, 9 months ago

Thanks for contacting me about this. It looks like that CSV template has some HTML links to buy stuff on amazon. It might just be an example but it looks kind of spammy to me at first glance. I’m not even sure if it fall within the WordPress terms for being on their Plugin Repository if it has embedded ad links like that. I tried the plugin on one of my test sites and I could not even use it because the Content Security Policy on my server blocked the JavaScript stating that there was Unsafe Eval usage.

I will have to do some more research before I can make a clear determination on whether this is allowable or if it is just a false positive…

I will get back to you when I have more info. In the mean time please contact the developer and ask them why they added links to amazon products to that CSV template file in the latest update.

erdembircan
(@erdembircan)

1 year, 9 months ago

Hello, WP Table Builder developer here,
These Amazon links are for a table template specialized for Amazon products. That links are there only for preview and easy edit for the users when they used that template. The product used is just a random Amazon page and nothing else.

Best regards.

Thread Starter jvmedia
(@jvmedia)

1 year, 9 months ago

Thanks guys!

Plugin Author Eli
(@scheeeli)

1 year, 9 months ago

I have just updated my definitions to exclude this false positive so that it will not come up as a know threat in my plugin any more 😉

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘WP Table Builder plugin false positive?’ is closed to new replies.