Wordfence false positive?

  • Resolved barnez

    (@pidengmor)


    10 years, 6 months ago

    Hi,

    I’m using Ninja Firewall, and Wordfence for virus scans. After updating to the latest version of Ninja Firewall (1.1.9) the Wordfence scan is flagging up the following:


    This file may contain malicious executable code

    Filename: wp-content/plugins/ninjafirewall/install.php
    File type: Not a core, theme or plugin file.
    Issue first detected: 11 mins ago.
    Severity: Critical
    Status New

    This file is a PHP executable file and contains an eval() function and base64() decoding function on the same line. This is a common technique used by hackers to hide and execute code. If you know about this file you can choose to ignore it to exclude it from future scans.

    I imagine this is a false positive, but if this can be confirmed then I can choose to ignore this through Wordfence.

    Cheers,
    Barnez

    https://www.ads-software.com/plugins/ninjafirewall/

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author nintechnet

    (@nintechnet)

    Hi,

    This file is part of NinjaFirewall. It is the installer and contains security rules.
    You can safely ignore this warning.

    Thread Starter barnez

    (@pidengmor)

    Fantastic.
    Many thanks for the speedy confirmation, and excellent plugin.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Wordfence false positive?’ is closed to new replies.