Malware found in Mobile_Detect.php in Content Views Pro

  • Hi all,

    I just got notified by Wordfence that malware was found on a couple of my websites in the file Mobile_Detect.php in Content Views Pro, located at wp-content/plugins/pt-content-views-pro/includes/lib/Mobile_Detect.php. Do not delete the file to fix this. This is a required file, and without it, my sites went to the white screen. To repair, replace the Mobile_Detect.php file with a fresh version. Would be interested to know if others have found this problem too.

Viewing 4 replies - 1 through 4 (of 4 total)

  • Hi Steve, I have the same issue in different sites and different plugin folders. The file is always the Mobile_Detect.php. I have the latest Plesk, WP and plugin versions.

    I have the same issue! It seems that the problem is not caused by ‘mobile_detect.php’ but the hacked website link. The real problem is that Tablets company website(vonino) has been hacked. Therefore, Wordfence detects the hacked website link and warned you.

    Plugin Author Content Views

    (@pt-guy)

    Hi all,
    Thank you for contacting us about this issue.

    Mobile_Detect.php is a comprehensive solution to detect mobile and tablet mobiles. It is used by our Pro plugin (to improve the responsive and some other features), and many other plugins.

    Thanks to @caput’s comment and this topic, we believe the reason of Wordfence detection is that file contains a link to a tablet brand website which was hacked recently. Here is the line:
    // Vonino Tablets - https://www.vonino.eu/tablets

    That is a comment line (non-executable code) which causes no harm to your site.
    Another strong evidence to prove that file is safe is this result:
    https://www.virustotal.com/#/file/23486ccffd315f742623c9dad6d8ef8f01978194f62e72b06d69349e74345bd5/detection
    (the file Mobile_Detect.php currently used in our Pro version is scanned by 58 antivirus companies and no harm detected)

    To fix this issue, just simply search and remove this line
    // Vonino Tablets - https://www.vonino.eu/tablets
    from the file /wp-content/plugins/pt-content-views-pro/includes/lib/Mobile_Detect.php.

    For Content Views Pro users, we’ve released new version 5.3.4.1 which removed that line from Mobile_Detect.php. Please update.

    Thank you,

    Plugin Author Content Views

    (@pt-guy)

    This is reply of Wordfence support about this issue (click here).
    Best regards,

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Malware found in Mobile_Detect.php in Content Views Pro’ is closed to new replies.

Tags