Dangerous PHP functions

Resolved jpkclifford
(@jpkclifford)

6 years, 9 months ago

Some months ago Cleantalk malware scanner started reporting 15 problem files in the section of my site which uses TNG software which I have used for 15 years or more. I was able to find a way to mark all theses files as “Approved” and the error reports stopped.
4 days ago Cleantalk started reporting the same problem with two files which had obviously been installed by the last WordPress update to Version 5.2.2 in June. This time I was unable to find any way to “Approve” these files. I tried disabling the Heuristic scan but this has not helped – I am still getting the error message for:
/wp-admin/includes/class-wp-site-health-auto-updates.php and
/wp-includes/version.php

What else can I do?

Viewing 9 replies - 1 through 9 (of 9 total)

Plugin Author alexandergull
(@alexandergull)

6 years, 9 months ago

Hello.

I transfer this info to the development group.

We will contact you within 2-3 workdays.

Be well,

Plugin Author alexandergull
(@alexandergull)

6 years, 9 months ago

Hello.

Could you send these files to [email protected]?

We would check them.

Best regards,

Rob
(@gravelrash)

6 years, 9 months ago

I’m also seeing the same warnings particularly on /wp-includes/version.php

Didn’t there used to be a report button where we could escalate the error to the CT team to review?

Cheers
Rob

Plugin Author alexandergull
(@alexandergull)

6 years, 9 months ago

Please, tell me what the plugin version you have installed?

Be well,

Rob
(@gravelrash)

6 years, 9 months ago

Hi Alex

2.35

Plugin Author alexandergull
(@alexandergull)

6 years, 9 months ago

Thank you. We will contact you soon.

Best regards,

Safronik
(@safronik)

6 years, 9 months ago

Hello @jpkclifford and @gravelrash

Looks like we have false positives on this file. We’re working on this.

We’ll let you know when we done. Thank you for the feedback!

Thread Starter jpkclifford
(@jpkclifford)

6 years, 9 months ago

When I started this thread 3 weeks ago I pointed out that the option to Approve (= whitelist) files had been removed but Cleantalk seem to have done nothing about this but have only produced new versions of the plugin which do not help in any way with the original problem.

Plugin Author alexandergull
(@alexandergull)

6 years, 9 months ago

Hello, @jpkclifford

I’ve asked you about the issue with approved in other thread you created

Let’s discuss this issue there.

Viewing 9 replies - 1 through 9 (of 9 total)

The topic ‘Dangerous PHP functions’ is closed to new replies.