Suspicious Links in various dist/js files

  • Resolved databell96

    (@databell96)


    8 months, 4 weeks ago

    Just got a notification via VaultPress about seeing seven suspicious links on my clients site. They’re all various js files located in //www/wp-content/plugins/wordpress-seo/js/dist like elementor or introductions. The links come mainly from G2 but WordProof is in there as well. How did this get injected into the folder? Is this a false positive a G2 is a very popular review site.

    The page I need help with: [log in to see the link]

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Support Maybellyne

    (@maybellyne)

    Hello @databell96,

    Thanks for reaching out about the notification you got from VaultPress. Can you both confirm the file paths reported, please? I checked the downloaded plugin files and installed files but couldn’t get those files you mentioned.

    To allay your fears, G2 is a review platform where Yoast has a profile while there’s a Wordproof integration in our plugin.

    b4d

    (@bobdelong)

    Hello @maybellyne,

    Here are what vaultpress is reporting:

    elementor.js /wp-content/plugins/wordpress-seo/js/dist

    introductions.js /wp-content/plugins/wordpress-seo/js/dist

    new-settings.js /wp-content/plugins/wordpress-seo/js/dist

    post-edit.js /wp-content/plugins/wordpress-seo/js/dist

    support.js /wp-content/plugins/wordpress-seo/js/dist

    wordproof-uikit.js /wp-content/plugins/wordpress-seo/js/dist

    sidebar-presenter.php /wp-content/plugins/wordpress-seo/src/presenters/admin

    Thanks!

    Plugin Support Maybellyne

    (@maybellyne)

    Thanks for sharing those file paths, @bobdelong. They are all valid Javascript files in our plugin. So VaultPress’s report is a false positive.

    b4d

    (@bobdelong)

    Thank you for confirming!

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Suspicious Links in various dist/js files’ is closed to new replies.