Title: malicious code message Last modified: January 8, 2025 --- # malicious code message * Resolved [cdavis1018](https://wordpress.org/support/users/cdavis1018/) * (@cdavis1018) * [1 year, 5 months ago](https://wordpress.org/support/topic/malicious-code-message/) * My hosting provider uses EasyWP. My site got an alert involving your plugin. * “EasyWP detected 1 pua files. * Your website has been compromised by malwares, posing a significant threat to your online presence and visitor security. “ * According to their tech support their system in reporting this file * The path to the file is wp-content/plugins/wp-file-manager/file_folder_manager. php * as the “malicious” code. can you explain why? * If not I may have to stop using the plugin. Viewing 2 replies - 1 through 2 (of 2 total) * Thread Starter [cdavis1018](https://wordpress.org/support/users/cdavis1018/) * (@cdavis1018) * [1 year, 5 months ago](https://wordpress.org/support/topic/malicious-code-message/#post-18232861) * I am using WordPress 6.7.1 * [file manager support](https://wordpress.org/support/users/filemanagersupport/) * (@filemanagersupport) * [1 year, 5 months ago](https://wordpress.org/support/topic/malicious-code-message/#post-18233561) * Hello, We understand how concerning a security alert like this can be, and we want to assure you that maintaining the security and integrity of our plugin is our top priority. * Our team actively maintains the WP File Manager plugin and promptly resolves any security issues as they arise. Currently, there are no active vulnerabilities associated with our plugin; you can check this on [Wordfence Intelligence.](https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins) * Regarding the alert from EasyWP, we would like to investigate this matter further to provide you with a detailed explanation and resolution. In some cases, such detections may result from false positives, but a thorough review is essential to rule out any concerns. * To assist us in this analysis, could you please: 1. **Share the Detection Reports/Logs**: Kindly provide any detection reports or logs generated by your hosting provider that flagged the file as malicious. 2. **Send the Flagged File**: Please download the file located at wp-content/plugins/ wp-file-manager/file_folder_manager.php and share it with us for examination. * You can send both these items directly to us at **[support@filemanagerpro.io](http://support@filemanagerpro.io)**. * If any issues are identified, they will be addressed as a priority. * Thank you WP File Manager Support Viewing 2 replies - 1 through 2 (of 2 total) The topic ‘malicious code message’ is closed to new replies. * ![](https://ps.w.org/wp-file-manager/assets/icon-128x128.png?rev=2491299) * [File Manager](https://wordpress.org/plugins/wp-file-manager/) * [Frequently Asked Questions](https://wordpress.org/plugins/wp-file-manager/#faq) * [Support Threads](https://wordpress.org/support/plugin/wp-file-manager/) * [Active Topics](https://wordpress.org/support/plugin/wp-file-manager/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/wp-file-manager/unresolved/) * [Reviews](https://wordpress.org/support/plugin/wp-file-manager/reviews/) * 3 replies * 2 participants * Last reply from: [file manager support](https://wordpress.org/support/users/filemanagersupport/) * Last activity: [1 year, 5 months ago](https://wordpress.org/support/topic/malicious-code-message/#post-18233561) * Status: resolved