Wordfence Supercache File Warning

  • David

    (@davidwp4)


    6 years, 2 months ago

    Hello,

    Wordfence gave me 2 critical warnings, both concerning Supercache files:

    ‘ Critical Problems:

    * File appears to be malicious: wp-content/cache/supercache/mywebsite.com/meta-wp-cache-694bbe2381d04a758c55dde238b4fb96.php

    * File appears to be malicious: wp-content/cache/supercache/mywebsite.com/meta-wp-cache-8a5b75989f8b8674e41c4cfc2e57a203.php ‘

    When I log in, I am further told that the file appears modified to perform malicious activity. That the matched text is: Eval($_POST

    Further, that the issue type is: Backdoor:PHP/EvalSuperGlobal.7725

    I checked these forums for false positives and did find a post on the supercache forum stating that malicious code may have been added to the cache. And so I deleted the cache.

    A new scan no longer highlights the file.

    My question is, is/was my website hacked? Was this a false positive? Did deleting the catch resolve the issue?

    Thank you in advanced!

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)
  • alex.gav

    (@alexgav)

    6 years, 1 month ago

    I have the same issue.
    Have you find the source cause?

    Thread Starter David

    (@davidwp4)

    6 years, 1 month ago

    Hi Alex,

    I had also submitted this to the Wordfence forum: https://ww.wp.xz.cn/support/topic/supercache-file-critical-warning/

    In short, it appeared to me that it was code held on the cache. Once cleared, there were no issues until hours later when the code re-appeared.

    I finally deleted Supercache and that resolved the issue. (I also followed the Wordfence steps to take if you think your site might be infected.)

    Hope this helps,

    Plugin Author Donncha O Caoimh (a11n)

    (@donncha)

    5 years, 11 months ago

    This isn’t a problem with WP Super Cache. Your site was infected with something probably and the plugin cached the infected pages. Wordfence simply found the cached pages.

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Wordfence Supercache File Warning’ is closed to new replies.