Is there a list somewhere where we can check if these files/functions are in fact maliscious or are false positives?
Well if there were I guess you guys would flag these green and not show us. Its real hard to find info on these files…
Right now im looking at two almost identical errors in two plugins.
1-
Location:
/var/web/site/public_html/wp-content/plugins/snapshot/lib/Snapshot/Model/Destination/ftp/phpseclib1.0.10/Crypt/Base.php
Error:
if (version_compare(PHP_VERSION, ‘5.3.0’:wink: >= 0) {
eval(‘$func = function ($_action, &$self, $_text) { ‘ . $init_crypt . ‘if ($_action == “encrypt”:wink: { ‘ . $encrypt . ‘ } else { ‘ . $decrypt . ‘ } };’:wink:;
if (version_compare(PHP_VERSION, ‘5.3.0’:wink: >= 0) {
2-
Location:
/var/web/site/public_html/wp-content/plugins/google-analytics-async/vendor/phpseclib/phpseclib/phpseclib/Crypt/Base.php
Error:
if (version_compare(PHP_VERSION, ‘5.3.0’:wink: >= 0) {
eval(‘$func = function ($_action, &$self, $_text) { ‘ . $init_crypt . ‘if ($_action == “encrypt”:wink: { ‘ . $encrypt . ‘ } else { ‘ . $decrypt . ‘ } };’:wink:;
if (version_compare(PHP_VERSION, ‘5.3.0’:wink: >= 0) {
So,
Ignore or Delete?
And again, you guys must be testing tons of plugins with defender in your many installations, and reports like this one from client installations; is there no way to compile a list for us we can search and find these in, or even better yet instruct Defender to do the job automatically?
Best Regards,
Levent
