Malware

  • Resolved calderwood

    (@calderwood)


    9 months, 2 weeks ago

    I installed your plugin yesterday (great plugin by the way) and the malware scanner pinged your file as being infected. This is a staging site and I have deleted the plugin. The details are:

    File: wp-content/plugins/gravity-forms-pdf-extended/vendor_prefixed/mpdf/mpdf/src/Mpdf.php

    We have removed the plugin.

    The page I need help with: [log in to see the link]

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author Jake Jackson

    (@blue-liquid-designs)

    Hi @calderwood,

    Thank you for reaching out about this potential security issue.

    mPDF is the library we use to generate the PDF documents. Since generating PDFs involves reading and writing at the binary and hexadecimal level in PHP, this type of code can create false-positives in security scanning software.

    Did your security software provide the line number(s) of the malware it found in the Mpdf.php file? It contains over 25,000 lines of code, and I’d need to know the specific section of code that triggered the alert to identify if there is actually a security issue, or if this is another a false positive.

    Much appreciated.

    Plugin Author Jake Jackson

    (@blue-liquid-designs)

    Malware report likely false positive, so marking topic as resolved. Feel free to provide additional information about the specific code flagged as malware and we will investigate further. ??

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Malware’ is closed to new replies.