Title: Framework.php has base64 encrypted text
Last modified: June 2, 2026

---

# Framework.php has base64 encrypted text

 *  Resolved [wv0l](https://wordpress.org/support/users/wv0l/)
 * (@wv0l)
 * [2 days, 17 hours ago](https://wordpress.org/support/topic/framework-php-has-base64-encrypted-text/)
 * wp-content/plugins/wp-date-and-time-shortcode/denra-plugins/classes/Framework.
   php was flaged by a Namecheap full scan as having Universal decode regex match
   = [universal decoder] The line
 * const LOGO_SIGN_BASE64_ENCODED
 *  = ‘data:image/svg+xml;base64,PD94bWwgdmVyc2lvbj0iMS4wIiBzdGFuZGFsb25lPSJubyI/
   Pgo8IUR …. is the line in question. I just want to make sure it is valid? If 
   so thanks, if not what do I do?

Viewing 2 replies - 1 through 2 (of 2 total)

 *  Plugin Contributor [Ivaylo Tinchev](https://wordpress.org/support/users/itinchev/)
 * (@itinchev)
 * [2 days, 13 hours ago](https://wordpress.org/support/topic/framework-php-has-base64-encrypted-text/#post-18926936)
 * Hello [@wv0l](https://wordpress.org/support/users/wv0l/),
 * You can breathe a sigh of relief. What you are looking at is a **false positive**–
   meaning the server scanner flag is triggered by regular, safe code rather than
   actual malware.
 * The Namecheap scanner flagged this because it saw a large block of text starting
   with data:image/svg+xml;base64,.
    - **What it actually is:** This is a standard **Data URI** containing a Base64-
      encoded SVG (Scalable Vector Graphic) image. Developers often convert small
      images (like a logo) into a text format (Base64) and embed them directly inside
      the PHP file (Framework.php). This allows the plugin to load the logo instantly
      without making an extra network request to fetch an image file.
    - **Why the scanner got nervous:** Automated server scanners look for patterns.
      Hackers frequently hide malicious, heavily obfuscated code or backdoors inside
      long Base64-encoded strings. Because your plugin has a long Base64 string,
      the scanner’s automated rule (Universal decode regex match) assumed it was
      a hidden decoder script rather than an image.
 * Is it valid?
 * **Yes, it is entirely valid.** The variable name itself tells the story: const
   LOGO_SIGN_BASE64_ENCODED. It is simply a core file for the plugin storing the
   brand logo/icon. What do you do now?
    1. **Whitelist or Ignore the Flag:** Inside your Namecheap hosting panel (usually
       via Imunify360 or the cPanel Malware Scanner interface), you can safely select
       this specific file and mark it as **Ignore**, **False Positive**, or **Whitelist**.
       This prevents the scanner from bugging you about it in the future.
    2. **Double-Check Your Updates:** While _this specific line_ is perfectly safe,
       it’s always a great security practice to ensure the rest of your site is secure.
       Make sure the plugin is updated to its latest version via your WordPress dashboard.
       
       You don’t need to delete the file, modify the line, or panic – the plugin is
       just trying to display the logo!
 *  Thread Starter [wv0l](https://wordpress.org/support/users/wv0l/)
 * (@wv0l)
 * [2 days, 11 hours ago](https://wordpress.org/support/topic/framework-php-has-base64-encrypted-text/#post-18926982)
 * With the name I thought it would be a** **false positive, but better to ask and
   be sure than to guess wrong.
 * Thanks for confirming! 😁

Viewing 2 replies - 1 through 2 (of 2 total)

You must be [logged in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fframework-php-has-base64-encrypted-text%2F%3Foutput_format%3Dmd&locale=en_US)
to reply to this topic.

 * ![](https://ps.w.org/wp-date-and-time-shortcode/assets/icon.svg?rev=2291661)
 * [WP Date and Time Shortcode](https://wordpress.org/plugins/wp-date-and-time-shortcode/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/wp-date-and-time-shortcode/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/wp-date-and-time-shortcode/)
 * [Active Topics](https://wordpress.org/support/plugin/wp-date-and-time-shortcode/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/wp-date-and-time-shortcode/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/wp-date-and-time-shortcode/reviews/)

## Tags

 * [encoded](https://wordpress.org/support/topic-tag/encoded/)
 * [logo](https://wordpress.org/support/topic-tag/logo/)

 * 2 replies
 * 2 participants
 * Last reply from: [wv0l](https://wordpress.org/support/users/wv0l/)
 * Last activity: [2 days, 11 hours ago](https://wordpress.org/support/topic/framework-php-has-base64-encrypted-text/#post-18926982)
 * Status: resolved