Honeypot triggers Sucuri malware alert

  • Resolved Alex Mansfield

    (@alexmansfield)


    2 years, 5 months ago

    After installing SureCart, Sucuri is reporting the following:

    Malware detected by scan (Critical Risk)

    The “Malware detected” is on the checkout page, and this is the code they’re saying is “Known javascript malware.”

    
<sc-checkbox name="get_feedback" value="Feedback" style="position: absolute; left: -9999px; top: -9999px;"></sc-checkbox>

    I looked through your code, and it looks like that’s supposed to be loading on the checkout page as part of the honeypot feature.

    Anyway, I just wanted to let you know that the way the honeypot is implemented, it’s triggering the malware alert. I’m not sure if there is a way around that or not.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Contributor Adam @ WPCrafter

    (@wpcrafter)

    Thanks for letting us know. We will see why they are flagging it this way and if we can work with them to correctly detect our plugin.

    Thread Starter Alex Mansfield

    (@alexmansfield)

    Thanks Adam! I think it is due to the style section of that element placing it way off of the visible portion of the screen, but that’s just a guess. Thanks for looking into it!

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Honeypot triggers Sucuri malware alert’ is closed to new replies.