Malicious file due to phpmailer modification
-
I received this in an email from Wordfence on 12/28:
Critical Problems:
* WordPress core file modified: wp-includes/class-phpmailer.php
* File appears to be malicious: wp-content/plugins/accelerated-mobile-pages/includes/options/redux-framework/inc/fields/ace_editor/vendor/mode-php.jsI just saw the email, because it randomly wound up in my junk mail (my other Wordfence emails hit inbox). It just so happens, I deleted the AMP plugin yesterday, because it was making my “coming soon” page look horrible on my cell (as in periods started with punctuation, but didn’t end with any, and everything was right aligned). Now I’m wondering if the issues were related to what Wordfence found.
My webhost put the phpmailer file in a quarantine folder until the WP update comes. My question is, do you think there’s anything else I should be concerned about? When I think malicious, I think about it putting its grubby hands on other stuff. I did uninstall the AMP plugin, and everything on my site is up to date.
- The topic ‘Malicious file due to phpmailer modification’ is closed to new replies.
