Quttera – Detected malicious PHP script

  • Resolved shanjie

    (@shanjie)


    1 year, 12 months ago

    FILE: wp-content/plugins/essential-addons-for-elementor-lite/includes/Elements/NFT_Gallery.php
    FILE_MD5: 1d535e3efa413e8ea128c6de0948933e
    SEVERITY: enMaliciousThreatType
    ENGINE: fscanner
    THREAT_SIG: e55bcf2b86f402d8ebd6eb769170611c
    THREAT_NAME: Heur.PHP.Obfus.gen.87
    THREAT: <?php namespace Essential_Addons_Elementor\Elements; // …
    DETAILS: Detected malicious PHP script

    I am getting this from the latest scan from Quttera

    • This topic was modified 1 year, 12 months ago by shanjie.
Viewing 5 replies - 1 through 5 (of 5 total)

  • Please send us this file to address support[at]quttera[dot]com for further investigation.

    We will update you on our findings.

    Thank you

    Plugin Support Pial

    (@iapial)

    Hello there

    Hope you are doing well.

    I have checked your inquiry regarding NFT_Gallery “Detected malicious PHP script” . Upon investigation, we have discovered similar issues and have taken steps to resolve it. It might be happening only because of the code structure please don’t be alarmed there is no “malicious PHP script” inside our plugin. Our development team has been notified and is working towards a solution.

    Thank you for bringing this to our attention. We apologize for any inconvenience caused.

    We appreciate your patience and would like to assure you that we are doing our best to resolve this issue as soon as possible. Once resolved, we will keep you updated.

    Thank you again for your understanding.

    Have a wonderful day.

    Plugin Support Pial

    (@iapial)

    Hello again @shanjie ,

    Hope you are doing well.

    You will be glad to know that we have fixed issue regarding NFT_Gallery “Detected malicious PHP script”.

    We have previously used a hardcoded API key and passing it through the MD5 hashing algorithm and because of that it can result in a false-positive malware detection, which is most likely due to the security software’s heuristics or signature-based scanning. @quttera support can provide further information on why this is being treated as malware

    Please download this DEV version of our plugin and upload and activate this from here : https://d.pr/f/Mc7SIL and it will solve your issue.

    Note: Please Regenerate the asset after update the Dev version

    To regenerate assets, you can go to wp-admin -> Essential Addons then, switch to the ‘Tools’ tab and hit the ‘Regenerate Assets’ button. Check out this screenshot: https://d.pr/i/FuLkYy

    I have also created a video just for you on how to do that please check here: https://d.pr/v/OZMjrV?

    Hope it helps.

    Please let me know how it goes.

    Looking forward to your response.

    Thank you

    Plugin Support Pial

    (@iapial)

    Hello again,

    Sorry for the inconvenience.

    We did not hear from you since our last conversation.

    Could you please let us know if you are still having the issue?

    So that we could try to solve your issue.

    We are waiting for your response.

    Thank you.

    Plugin Support Pial

    (@iapial)

    Hello again

    Hope you are doing well.

    About your issue, We still haven’t heard back from you. So, I am assuming your issue has been resolved. I am resolving this topic.

    Have a nice day!

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Quttera – Detected malicious PHP script’ is closed to new replies.