Title: Known Security Issues?
Last modified: April 7, 2023

---

# Known Security Issues?

 *  Resolved Anonymous User 13711045
 * (@anonymized-13711045)
 * [3 years, 2 months ago](https://wordpress.org/support/topic/known-security-issues/)
 * Are there any known security vulnerabilities currently with the plugin? I have
   multiple sites that are hacked, and one of the common denominators is that “inc/
   classes/generate-url.class.php” is being renamed to “generate-url.class.php.suspected”
   and the permissions are changed to executable. There are other things happening
   as well but this particular file is being modified on every instance.

Viewing 1 replies (of 1 total)

 *  Plugin Author [Sybre Waaijer](https://wordpress.org/support/users/cybr/)
 * (@cybr)
 * [3 years, 2 months ago](https://wordpress.org/support/topic/known-security-issues/#post-16635965)
 * Hello!
 * There are no known security issues with the plugin. As a hacker, I regularly 
   check the plugin files for security holes.
 * I do not know why that file got marked as suspected by the vulnerability scanner
   you’re using. That file does not store data or make direct filesystem calls.
 * Perhaps because the file deals with URLs and hacked sites often are used to spam
   URLs; it also uses the word “root” (“root/home URL of domain”), a name shared
   by Linux administrators. Whatever added `.suspected` may have altered the file
   permissions as well, so you can inspect it without risking it being overwritten.
   Your operating system does not recognize the `.suspected` extension, treating
   it as a “dangerous” executable file.
 * If you’d like me to review the content of the `.suspected` file, please put it
   in Pastebin and share that URL.
 * Lastly, be sure to follow these steps: [https://wordpress.org/documentation/article/faq-my-site-was-hacked/](https://wordpress.org/documentation/article/faq-my-site-was-hacked/).

Viewing 1 replies (of 1 total)

The topic ‘Known Security Issues?’ is closed to new replies.

 * ![](https://ps.w.org/autodescription/assets/icon.svg?rev=3000376)
 * [The SEO Framework – Fast, Automated, Effortless.](https://wordpress.org/plugins/autodescription/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/autodescription/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/autodescription/)
 * [Active Topics](https://wordpress.org/support/plugin/autodescription/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/autodescription/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/autodescription/reviews/)

 * 2 replies
 * 2 participants
 * Last reply from: [Sybre Waaijer](https://wordpress.org/support/users/cybr/)
 * Last activity: [3 years, 2 months ago](https://wordpress.org/support/topic/known-security-issues/#post-16635965)
 * Status: resolved