Can you confirm if this is malicious?

  • Resolved JustBruno

    (@justbruno)


    3 years ago

    Hi, I am using the WPGENS Refer a friend plugin at this link. Running a scan it shows the entire page at “/wpgens-refer-a-friend-premium/includes/class-wpgens-raf-user.php” as a known threat. I didn’t know if I should paste the page code here or if you want me to email it to you. Please let me know.

    Thanks!!

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author Eli

    (@scheeeli)

    Hi Bruno,
    Yes, can you please email me that file so that I can check it out and confirm if this is a false positive or not?
    eli AT gotmls DOT net

    Thread Starter JustBruno

    (@justbruno)

    Thank you Eli!

    I’ve sent the email.

    Plugin Author Eli

    (@scheeeli)

    Thanks for sending me that file. As it is from a paid plugin it is not held to the opensource standards that other free plugin are and it is not available for me to look at without paying for it. After reviewing the code in that file I have confirmed that it is in fact not malicious, so I have updated my definitions to omit this pattern from my scans while still being able to detect the original pattern that is similar to this class but used in a malicious way. Please download the latest definition updates so you can run the complete scan again without flagging this plugin file to be quarantined. If you have already quarantined this file then you can restore it from the Anti-Malware Quarantine page in your wp-admin.

    Thread Starter JustBruno

    (@justbruno)

    Thank you so much Eli. As usual, you provide the very best service. In my book you are at the top of the heap of all plugin developers.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Can you confirm if this is malicious?’ is closed to new replies.