The plugin have a callback script

  • Resolved jhonx

    (@jhonx)


    4 months, 1 week ago

    They successfully uploaded a file to my server; however, thankfully, Imunify360 detected and blocked the PHP file.

    Although I’m not a security expert, I believe this could pose a significant risk if someone were able to exploit it.

    • This topic was modified 4 months, 1 week ago by jhonx.
    • This topic was modified 4 months, 1 week ago by jhonx.
Viewing 1 replies (of 1 total)
  • Plugin Support amanbv

    (@amanbv)

    Hey,

    Thank you for bringing this to our attention. We understand that firewall alerts can be concerning. Please rest assured that the PHP file flagged by Imunify360 is a legitimate part of our plugin. It is securely protected behind an authentication layer and can only be accessed when a valid key is provided by the user.

    This script is essential for copying files to your site during the migration process, making it a mandatory component of the plugin.

    We will inform the Imunify360 team about this false positive so they can adjust their detection accordingly.
    If you have any further questions or concerns, please don’t hesitate to reach out.

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this topic.