False Positive Report from Wordfence OR Critical Impact ?

  • Resolved Umesh Ghimire

    (@ughimire1)


    4 months, 3 weeks ago

    Some of our WordPress plugin users are reporting an issue regarding a polyfill.io vulnerability flagged by Wordfence. We checked our code and found that the URL appears in a text file (not executable) within a source map file. You can see the URL in the following screenshot [ Screenshot 1].

    Upon investigation, we discovered that we are using react-router in our WordPress plugin, which is why the URL appears there. You can see the fix in the official react-router repository through this PR: react-router PR #11741.

    It seems that this notice is triggered because the domain is blacklisted by the Wordfence algorithm.

    I would like to confirm whether this is indeed a false positive or if there is any critical impact. It would be great to get answers to these queries. Thank you.

    Here are the screenshots of the report:

Viewing 1 replies (of 1 total)
  • Plugin Support WFAdam

    (@wfadam)

    Hello @ughimire1 and thanks for reaching out to us!

    Thanks for providing all that information and screenshots.

    It is a false positive because the URL is not actually used in the code. It’s just being flagged because it detected the presence of a malicious domain.

    Thanks again!

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this topic.