New vulnerability: php.backdoor.generic-w3.017

  • Resolved kunstwirt

    (@kunstwirt)


    1 year ago

    After the plugin update 8 hours ago the Sucuri scanner found a possible new backdoor issue:

    File Path:
    wp-content/plugins/advanced-google-recaptcha/interface/tab_firewall.php

    Definition:
    php.backdoor.generic-w3.017

    Warning: File modified (multiple changes):
    ./wp-content/plugins/advanced-google-recaptcha/advanced-google-recaptcha.php (old size: 1519; new size: 10300)

Viewing 6 replies - 1 through 6 (of 6 total)
  • Plugin Author WebFactory

    (@webfactory)

    Hi,
    Do you have any other details about this? Like the line number? That file is 99% HTML, just went through it line by line and seriously don’t see anything problematic ??

    Plugin Author WebFactory

    (@webfactory)

    Just installed Sucuri v1.8.39 – not getting anything. Can you please tell me the version of Sucuri you’re using?

    Newt Labs

    (@newtlabs)

    I’m using the Sucuri monitoring platform (not plugin, the service) and I’m also getting this warning. As there was an update released yesterday I’m assuming it’s something to do with that.

    I’m wondering if it’s to do with all of the things mentioned in the file. I’ve sent Sucuri a support request to see if it is a false positive and will follow up here when I get a reply.

    • This reply was modified 1 year ago by Newt Labs.
    Plugin Author WebFactory

    (@webfactory)

    We released an update a few minutes ago (v1.11) can you please check again?

    Newt Labs

    (@newtlabs)

    It seems ok now, cheers.

    Plugin Author WebFactory

    (@webfactory)

    Superb! Thank you for checking!

Viewing 6 replies - 1 through 6 (of 6 total)
  • The topic ‘New vulnerability: php.backdoor.generic-w3.017’ is closed to new replies.

Tags