File being flagged by security scanner

  • Resolved Shaolin

    (@shaolin)


    4 years ago

    Hi

    I’ve recently been hit with the plus addons for elementor Zero Day exploit. Caught it in time with minimal damage, and the site looks clean and secure again. However when reading about this exploit (between 5-10th March) the page offers their own free scanner and it keeps flagging a javascript with reverse code in it which it claimed was malicious. I reinstalled fresh copies of all plugins and core files (not just overwrote, deleted via CPanel File Manager and reuploaded fresh)

    Sucuri scanner doesn’t flag it, nor does Wordfence so I thought I’d check with you. I’m thinking it is a false positive (and a cynical ploy to get people to use their clean up service). The suspicious code was located at

    /wp-content/litespeed/cssjs/16d1a.js?e6f29 at line 22
    s)},reverse_dictionary_match:function(e,t){var n,r,i,a,s,o;for(null==t&&(t=RANKED_DICTIONARIES),o=e.split(&quot;&quot;).reverse().join(&quot;&quot;),i=this.dictionary_match(o,t),a=0,n=i.length;a<n;a++)r=i[a],r.token=r.token.split(&quot;&quot;).reverse().join
    I’m pretty sure this is not a problem and the scanner at securityscan.getastra.com is throwing up a false positive

    Regards

Viewing 1 replies (of 1 total)
  • Plugin Support qtwrk

    (@qtwrk)

    Hi,

    /wp-content/litespeed/cssjs/16d1a.js?e6f29

    this file is minified or combined JS file from your original JS files , LSCWP itself doesn’t change the content of it

    so whatever your security software worries , it is coming from your other plugin/themes

    you can disable LSCWP and re-run this to locate which one was it

    Best regards,

Viewing 1 replies (of 1 total)
  • The topic ‘File being flagged by security scanner’ is closed to new replies.