WordFance Alert: “Yoast SEO” version “15.9.1” and has been modified

  • Resolved Nadav Levi

    (@123nadav)


    4 years ago

    Hey, Everybody.
    Wordfance firewall notice to an update not modified as you distributed the plugin:
    https://i.ibb.co/wwkX7r5/1.png

    Is warning after the scan:
    Details: This file belongs to plugin “Yoast SEO” version “15.9.1” and has been modified from the file that is distributed by www.remarpro.com for this version. Please use the link to see how the file has changed. If you have modified this file yourself, you can safely ignore this warning. If you see a lot of changed files in a plugin that have been made by the author, then try uninstalling and reinstalling the plugin to force an upgrade. Doing this is a workaround for plugin authors who don’t manage their code correctly.
    Learn More: https://www.wordfence.com/help/?query=scan-result-modified-plugin

    This warning shows up on all of my websites:
    https://locksmithunit.com/
    https://locksmithunit.es/
    https://locksmithunit.cat/

    There plugin did an update together with you, nothing wrong,
    the warning in the firewall show warning only on WordPress-SEO (Yoast).

    Please update your plugin.

    The page I need help with: [log in to see the link]

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Support devnihil

    (@devnihil)

    @123nadav We’re sorry to hear you are experiencing this issue on your site.

    If you manually update the plugin to the current version (15.9.1) and overwrite the wp-seo-main.php, does this resolve the warning you are receiving from Wordfence?

    We have instructions on how to upgrade the plugin manually at the following link: https://yoast.com/help/how-can-i-update-my-free-plugin/#ftp You will need an FTP program such as FileZilla and your FTP details, which can be obtained from your host provider.

    Thread Starter Nadav Levi

    (@123nadav)

    WOW, are you serious?
    I know to do it believe me.
    btw it is not recommended by WordPress anymore.

    is better to be installed via WordPress.
    You Should release an update because I am not the only one with the same issue here.

    This solution I was able to do by my self (delete and install the plugin again)
    I don’t have the power for that, and I don’t need to do it.
    My site is fully automatic.
    this issue does not need to happen at all. (This auto-update via WordPress core.)
    you need to support it without issues like any other plugin…

    Your last update not was done correctly.
    don’t blame me (or all the other people compline on the same issue).

    btw the plugin update automatically.
    so you already wrong.

    Please be Professional developers, and release a good update for all of us.

    Thank you.

    • This reply was modified 4 years ago by Nadav Levi.
    Pcosta88

    (@pcosta88)

    @123nadav

    Thanks for the feedback regarding this issue! We overlooked adding the right tags in a release. As a result it triggered the WordFence notifications. We apologize for the concerns you had about it. We know we can improve our releases by making sure adding the right tags are not overlooked. We’ve gone ahead and passed long this feedback to the right team.

    Thread Starter Nadav Levi

    (@123nadav)

    @pcosta88
    Thank you as always.

    Really, I think you the most professional developer in this plugin team.
    (And the guy with the glasses in GitHub hahaha he is amazing too).

    You need to do it now and fast… wordfance generates errors.
    Thank you again costa ??

    • This reply was modified 4 years ago by Nadav Levi.
    WFSupport

    (@wfsupport)

    Thanks for pointing this out. I’m Tim, the Lead Customer Support Engineer at Wordfence and Taco, the Community manager at Yoast, was so kind as to let me answer here.

    In most plugins there is a readme.txt file that, among other things, includes the “Tested up to” value that tells users what version of WordPress the plugin works with. Yoast has changed their code a little (which is totally fine) and added a constant in the code that also includes that information. Wordfence ignores text changes in the readme.txt file but changed code in a plugin is something you should know about. When a site is compromised often times changed code in plugins or themes, or even WordPress core files, is the first sign that something is amiss.

    In this particular case Yoast released version 15.9.1 and this value was not changed and still indicated that the plugin was only tested up to WordPress version 5.6. Team Yoast quickly spotted the problem and fixed it in the repository at www.remarpro.com effectively releasing a second version of 15.9.1. This version corrected the constant to indicate that the plugin is tested up to WordPress version 5.7. As a result, if you had updated before the change was made you would get the scan warning you saw. If you updated after the change, you wouldn’t.

    To fix this, just choose the repair option for that scan result. It will fetch the corrected version and replace the old version on your site. Since this is just a constant there should be no problems at all.

    https://postimg.cc/t7dZYZrn

    I might add that Team Yoast is very on top of these things and super responsive. Thanks Taco and Team Yoast for taking care of this so fast!

    Tim

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘WordFance Alert: “Yoast SEO” version “15.9.1” and has been modified’ is closed to new replies.