Known Security Issues?

  • Resolved Anonymous User 13711045

    (@anonymized-13711045)


    3 years, 2 months ago

    Are there any known security vulnerabilities currently with the plugin? I have multiple sites that are hacked, and one of the common denominators is that “inc/classes/generate-url.class.php” is being renamed to “generate-url.class.php.suspected” and the permissions are changed to executable. There are other things happening as well but this particular file is being modified on every instance.

Viewing 1 replies (of 1 total)
  • Plugin Author Sybre Waaijer

    (@cybr)

    3 years, 2 months ago

    Hello!

    There are no known security issues with the plugin. As a hacker, I regularly check the plugin files for security holes.

    I do not know why that file got marked as suspected by the vulnerability scanner you’re using. That file does not store data or make direct filesystem calls.

    Perhaps because the file deals with URLs and hacked sites often are used to spam URLs; it also uses the word “root” (“root/home URL of domain”), a name shared by Linux administrators. Whatever added .suspected may have altered the file permissions as well, so you can inspect it without risking it being overwritten. Your operating system does not recognize the .suspected extension, treating it as a “dangerous” executable file.

    If you’d like me to review the content of the .suspected file, please put it in Pastebin and share that URL.

    Lastly, be sure to follow these steps: https://ww.wp.xz.cn/documentation/article/faq-my-site-was-hacked/.

Viewing 1 replies (of 1 total)

The topic ‘Known Security Issues?’ is closed to new replies.