Wordfence detect files changed

@kanadakurniawan if you re-downloaded the same tag, yes it is. These files have been changed, but the new tag hasn’t been released yet. When did Wordfence notify you actually? Have you taken any specific action before like re-downloading it? It would be good to know!

• This reply was modified 5 years, 7 months ago by Andrew Nevins.
• This reply was modified 5 years, 7 months ago by Gabe Livan.

I have a similar issue wherein every day, with the Wordfence e-mail update, I receive one issue, a variation on the following…

* Modified plugin file: wp-content/plugins/wp-asset-clean-up/classes/CleanUp.php

* Modified plugin file: wp-content/plugins/wp-asset-clean-up/classes/Main.php

* Modified plugin file: wp-content/plugins/wp-asset-clean-up/classes/Update.php

* Modified plugin file: wp-content/plugins/wp-asset-clean-up/templates/_admin-page-settings-plugin-areas/_common-files-unload.php

* Modified plugin file: wp-content/plugins/wp-asset-clean-up/templates/meta-box-loaded-assets/_asset-script-single-row.php

* Modified plugin file: wp-content/plugins/wp-asset-clean-up/templates/meta-box-loaded-assets/_asset-style-single-row.php

* Modified plugin file: wp-content/plugins/wp-asset-clean-up/templates/meta-box-loaded-assets/view-by-loaded-unloaded.php

* Modified plugin file: wp-content/plugins/wp-asset-clean-up/templates/meta-box-loaded-assets/view-by-location.php

* Modified plugin file: wp-content/plugins/wp-asset-clean-up/templates/meta-box-loaded-assets/view-by-parents.php

* Modified plugin file: wp-content/plugins/wp-asset-clean-up/templates/meta-box-loaded-assets/view-by-position.php

* Modified plugin file: wp-content/plugins/wp-asset-clean-up/templates/meta-box-loaded-assets/view-default.php

* Modified plugin file: wp-content/plugins/wp-asset-clean-up/templates/meta-box-loaded.php

I’m wondering… Is this normal or signs that this plugin has been hacked?

(By the way, never received any similar warnings for other plugins.)

@observechange This only happens when changes are made to the files without releasing a new tag. Wordfence checks the file that you have on the server and the file from the tag. If it’s different, it will add it to the alert.

As more people started to report this and some deactivated the plugin saying that it’s been hacked which is nonsense just because the same tag was updated, a new approach will be considered to just update the development version in case changes are made between tags. For instance, when a bug is fixed, I wanted to immediately have it added to the tag so users can just re-download the plugin and have a better version of it and even better, new plugin installs will have the latest version. All the changes are public and it’s easy to check what and when it was changed.

Releasing a new tag every other day, like it used to happen, annoyed some people and that’s why a decision was made to wait longer between updating the actual tags.

I’m open to any suggestions you might have about this! I do hope that you will continue to use the plugin, even though Wordfence (or another similar tool) reported these changes.

Thanks so much for the quick and informative reply! Love the plugin and glad that this report by WordFence does not actually reflect a security breach!