False positive on Contact Form DB ?

  • Hello,

    I think I have a false positive on the ‘Contact Form DB’. I just installed that plugin on my WordPress test site and then ran a Wordfence scan. It came up with the following issue:

    Modified plugin file: wp-content/plugins/contact-form-7-to-database-extension/CFDBIntegrationCFormsII.php

    I thought that’s strange since I just installed it from the repository.

    Then I used the compare option and that said:

    “There are no differences between the original file and the file in the repository.”

    Any idea?
    Thanks
    JP

    https://www.ads-software.com/plugins/wordfence/

Viewing 3 replies - 1 through 3 (of 3 total)

  • I’m seeing these on my sites as well. Looking at the code, nothing stands out as the usual malicious junk. Time stamps are consistent with a recent update to the plugin and match the other filed in the plugin.

    Same thing here, but I believe that’s an updated file that wordfence didn’t had time to insert into the repository.

    Plugin Author WFMattR

    (@wfmattr)

    Yes, it sounds like the plugin author might have made a change after the last update without changing the version number of the plugin — this can cause some false positives, and the “no differences” message when comparing files to the original.

    In this case, you can click the option to ignore the file until it changes. Usually this is fairly uncommon, so if it happens often, please do let us know again. Thanks!

    -Matt R

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘False positive on Contact Form DB ?’ is closed to new replies.