Server side scanner warnings – Securi

  • Resolved andyadvice

    (@andyadvice)


    4 weeks ago

    Securi are reporting this as a server side scanner warning:

    Found outdated Laravel inside: ./wp-content/plugins – Version: 2.4.0 (from ./wp-content/plugins/joli-table-of-contents/core/Application.php) – Please update asap.

    File PathDefinitionwp-content/wpr_recovery_rnmujqpyd**************qiose.php | php.backdoor.uploader.751

    This is the comment mentioned in the script
    /* Emergency Recovery Script
    ?* (c) WebFactory Ltd, 2019 – 2021
    ?* This script is NOT free software. Any and all distribution without explicit permission by WebFactory is forbidden
    ?*/

    Is this a recovery script from WP Reset?



    • This topic was modified 4 weeks ago by andyadvice.
Viewing 1 replies (of 1 total)
  • Plugin Author Alexandru Tapuleasa

    (@talextech)

    Hi,

    WP Reset does have an Emergency Recovery Script which is a single, standalone file that can perform some recovery operations for your website such as reinstalling core files, cleaning up core files, uploading and restoring snapshot, creating a new username etc. The filename you mention wpr_recovery_rnmujqpyd**************qiose.php, does look like it is this ERS script, however we can’t be certain without looking at the code.

    Since it’s a single file that has various tools as I described, it can appear like a malicious file to some scanners as it appears simmilar to files uploaded by hackers when they infect a website to have a backdoor for themselves in the future. So the scanner is correct for flagging it and if you don’t actually need the file there for anything you should remove it and only upload it when you actually need to use one if it’s functions ??

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this topic.