Compromised Plugins info incorrect

  • Resolved vkprog

    (@vkprog)


    1 year, 4 months ago

    Hi, I’ve been receiving these notifications for weeks now (I thnk months already!) I checked the first time I got it, and then read the vulnerability was affecting pro version, not the one I have. BUT despite the plugins having been already updated several times, I’m still receiving these emails, several times a day, apparently every time I load the WP dashboard.

    Is there any way to stop these emails from coming? or simply to update the plugin that I have the affected plugins already updated and safe?

    On the Cleantalk website on my user, I checked on the logs and it doesn’t find anything anymore. Also on the main list it shows the same website as with a warning.. but when loading the malware scanner it shows all ok. Also the Cloud Malware Scanner logs are empty. I’m puzzled.

    https://imgur.com/xCqK1YN

    https://imgur.com/EOSYo9s

    • This topic was modified 1 year, 4 months ago by vkprog.

    The page I need help with: [log in to see the link]

Viewing 11 replies - 1 through 11 (of 11 total)
  • Plugin Support sergecleantalk

    (@sergecleantalk)

    1 year, 4 months ago

    Hello,

    Please, deactivate the plugin with the “Complete deactivation” option enabled and then activate it again.

    1. Enter the Security by Cleantalk plugin settings. (WordPress Dashboard -> Settings -> Security by Cleantalk -> General settings tab)
    2. Check the “Complete deactivation” option at the bottom of the page and save changes.
    3. Deactivate the plugin on the “Plugins” page in WordPress Dashboard.
    4. Then activate it.
    5. Proceed to the plugin’s settings. (See item 1.)

    Did it help?

    Plugin Support sergecleantalk

    (@sergecleantalk)

    1 year, 3 months ago

    Hello.
    We haven’t heard back from you in a few days, so I’m going to mark this topic as “resolved”.
    If you have any further questions, you can start a new topic or contact us via our private Ticket System: https://cleantalk.org/my/support/open.

    Thread Starter vkprog

    (@vkprog)

    1 year, 3 months ago

    Oh ssorry, missed a notification, I’ll try later and let you know. Thanks

    Thread Starter vkprog

    (@vkprog)

    1 year, 3 months ago

    Hi, after a week, I just got again the same report for “Compromised WordPress Plugins” – I did follow your instructions, but again got the same email. Both Plugins marked as compromised are ok and not really affected anymore by that warning, so don’t know what to do :-/

    Plugin Support dimitrycleantalk

    (@dimitrycleantalk)

    1 year, 3 months ago

    Hello @vkprog,

    Could you send a screenshot showing the version of these plugins on your site? You can find the versions of the plugins in the installed plugins section.

    Thread Starter vkprog

    (@vkprog)

    1 year, 3 months ago

    Hi I’m in a rush, the plugin version is (just copied the text, sorry – editing, misread, you meant the plugins on the notification, adding them below the line – both are latest version)

    Security by CleanTalk

    Security & Malware scan by CleanTalk to protect your website from online threats and viruses. IP/Country FireWall, Web application FireWall. Detailed stats and logs to have full control.

    Version 2.150.1

    ________________________

    (inactive!)

    wpDataTables – Tables & Table Charts

    Create responsive, sortable tables & charts from Excel, CSV or PHP. Add tables & charts to any post in minutes with DataTables.

    Version 3.4.2.38

    ———-

    ProfilePress

    The modern WordPress membership and user profile plugin.

    Version 4.3.0

    • This reply was modified 1 year, 3 months ago by vkprog.
    Plugin Support amagsumov

    (@amagsumov)

    1 year, 3 months ago

    Hello @vkprog,

    Thank you for the details.

    Please give us 2-3 business days to check the issue.

    Plugin Support dimitrycleantalk

    (@dimitrycleantalk)

    1 year, 3 months ago

    Hello @vkprog,

    Thank you for waiting.

    Your wpDataTables – Tables & Table Charts plugin has version 3.4.2.38, and the vulnerability is present in versions below 6.3.2.

    Your ProfilePress plugin has version 4.3.0, and the vulnerability is present in versions below 4.5.5.

    So you just need to update these two plugins to the latest version.

    Did it help?

    Thread Starter vkprog

    (@vkprog)

    1 year, 3 months ago

    oh wondering then why they’ve not been automatically updated to their latest, it shows on my end as “updated” I mean without needing to be updated, hence I’m wondering why the warning is coming constantly.. that’s weird. I’ll try to update manually. Thanks for having a look!

    Thread Starter vkprog

    (@vkprog)

    1 year, 3 months ago

    hm checking and now I’m really puzzled, on the WordPress Plugin Directory says for WP Data Tables: Version3.4.2.38 – Last updated1 week agohttps://ww.wp.xz.cn/plugins/wpdatatables/

    So I don’t find or see where are the version you mention which is more recent than the ones in the WP Directory. I’m uploading manually those anyway, actually

    Alright, ProfilePress reinstalled manually, no idea why it didn’t update automatically and message from CleanTalk is gone, and we checked if we’re still needing the tables one, and it looks like not, so I just deleted it.

    Thank you for looking into this, and you can close the thread now 🙂

    • This reply was modified 1 year, 3 months ago by vkprog.
    Plugin Support katereji

    (@katereji)

    1 year, 3 months ago

    Hello @vkprog.

    The wpDataTables plugin also exists in a premium version, and the premium plugin has a separate version count. The vulnerability information was specifically about the premium version. Can you tell me what version you have installed?

Viewing 11 replies - 1 through 11 (of 11 total)

The topic ‘Compromised Plugins info incorrect’ is closed to new replies.