Hacked favicon.ico file not flagged as an issue

  • Resolved Christopher

    (@cjsheps)


    1 year, 11 months ago

    Hi, I though id give your plugin a try and it did not find the favicon.ico hack that the site was infected with which added multi admin accounts.

    I knew it was there but your plugin and the subsequent scans did not flag the infected file after three tries. WPMUDEV’s Defender plugin flagged it instantly.

    Can you explain to me why your plugin was not able to find and scan this vulnerability?

Viewing 1 replies (of 1 total)
  • Plugin Author akshatc

    (@akshatc)

    Hi. We purposely do not mark ico files as hacked. ICO or other such files are not dangerous by themselves and cannot be executed directly.

    The only time they can cause any harm is if they are included in another php file. We find any such instance and flag them automatically.

    This is the more difficult but important thing to do. We have put in a lot of effort to find the root cause of the issue and not mark an otherwise harmless file.

Viewing 1 replies (of 1 total)
  • The topic ‘Hacked favicon.ico file not flagged as an issue’ is closed to new replies.