Hosting says wordfenceClass.php is a malware

  • Resolved X.Company

    (@hsultd)


    1 year, 7 months ago

    My hosting sends me a message that they found this to be a exploit:

    php.wp.config.file.get.contents.base64.decodeOpen in file manager

    Please check the screenshot

    https://i.ibb.co/SsQnmYr/Untitled.png

    I use the free version, this is not a null version, it’s installed from wordpress plugin page.

    • This topic was modified 1 year, 7 months ago by X.Company.
Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @hsultd, thanks for your message.

    We had another case of this precise result recently on 20i hosting, who ultimately removed the signature as a false-positive. That was on 3rd August, so if you are also on this host you can safely ignore the message as it shouldn’t show again in subsequent scans.

    If you’re on another host, I would reach out to their support that you believe this to be a false-positive so they can look into it and make a decision on whether that’s the case here too.

    Thanks,
    Peter.

    Thread Starter X.Company

    (@hsultd)

    Thanks for your reply! I scan again and it’s ok now.

    • This reply was modified 1 year, 7 months ago by X.Company.
Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Hosting says wordfenceClass.php is a malware’ is closed to new replies.