Wordfence Flags This Plugin as Backdoor Backdoor:PHP/rce.10912

  • Resolved WillOfTheWeb

    (@willoftheweb)


    2 years, 8 months ago

    I installed your plugin last week and WordPress just did a scan of my site and flagged your plugin as Backdoor:PHP/rce.10912 as well as the premium version I purchased!!

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Support Nick

    (@d4d5bh6)

    Thank you for reporting this, let me check this with the developers.

    Plugin Author iClyde

    (@iclyde)

    Hi @willoftheweb

    This forum is only related to free version of the plugin.
    But report you received from WordFence is strictly related to premium add-on.

    As most premium add-ons or plugins we also encrypt our files.
    It makes source code of the plugin more secure.

    Duplicate Post add-on has two encrypted files, its core and plugin auto-updater.
    Because of specific keywords in the encrypted file, it could be marked as false-positive due to “eval” keyword.

    In summary, you may expect such warning but you can safely ignore it and whitelist these files.

    For future, please contact us directly via e-mail, if your question is related to our premium add-on: [ support (at) copy-delete-posts dot com ]
    – It’s just how www.remarpro.com forum works.

    Let me know if you need any further help ??
    Thank you!

    Thread Starter WillOfTheWeb

    (@willoftheweb)

    Ah, okay. It scared the crap out of me ??

    Plugin Support Nick

    (@d4d5bh6)

    Yes, makes sense. We’ll talk to Wordfence to whitelist us.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Wordfence Flags This Plugin as Backdoor Backdoor:PHP/rce.10912’ is closed to new replies.