Collapse-o-Matic Flagged for Malware

  • Resolved Kyle McCarley

    (@kylemccarley)


    8 years, 7 months ago

    My site’s been having issues with malware injections recently, and I’m still not sure where the vulnerability is. But in the most recent ordeal, when I removed unwanted code from my header.php and asked BlueHost to reinstate my account, they told me one of the files in collapse-o-matic was still flagging as malicious/suspicious. This surprised me, as the file hadn’t been changed since the last time the plugin was updated, and a scanner had told me the whole site was clean the day before the event. But I thought I’d bring it to your attention, just in case you might know why BlueHost is flagging it, or in case you feel it’s something you need to address in your next update.

    https://www.ads-software.com/plugins/jquery-collapse-o-matic/

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author Baden

    (@baden03)

    ah.ha… and what files was this?

    Thread Starter Kyle McCarley

    (@kylemccarley)

    I wish I could remember with certainty; I didn’t get a transcript of the chat, and deleted the whole folder just to be on the safe side, knowing I could reinstall the plugin later. I’m pretty sure they pointed out the main file, collapse-o-matic.php, but I’m not 100%.

    Plugin Author Baden

    (@baden03)

    well thanks for the info.
    we can assure you that the plugin does not come this way.
    you might want to harden your security settings and check your server logs for how this file was compromised.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Collapse-o-Matic Flagged for Malware’ is closed to new replies.