exploit in plugin

My firewall reported the following scripts as the culprits.

Please provide the exact info your “firewall” gave you.

Hi rldev can you provide more proof that the exploit came from this plugin? You are the first person to report such exploit.

Which firewall plugin or software are you using that reported the issue?

I really can’t provide more proof. CSF firewall tracks scripts and outgoing mail. It is not definitive, but it suggested the scripts I mentioned could be responsible. Uninstalling All In Once WP security did solve the problem though. Once uninstalled and the exim queue cleared and exim restarted, the problem is gone.

Unless you can tell us how the so-called issue is occurring it’s difficult for us to really fix anything.

I’m just trying to make you aware of a potential problem. Do with it as you wish. I stopped using the plugin on this particular site as I can’t sit around while a site is sending spam. I do have it installed on several other sites. If the issue pops up again, I will see if I can get you more information.

Thank you. If you get more info on it please share with us.

No reply in 11 months. I am marking this thread as resolved.

Thank you