Home News Contact Us Forum About Us Demos Products F.A.Q.
Shopping Cart
You currently have 0 items in your cart.


Recent Events
  • 23/11/2024 Black Friday 2024

    BIG SALE, 30% discount for all our extensions. Use BF24 coupon code. Hurry up the discount is valid till 3 December.

  • 31/12/2023 New Year SALE

    We are glad to announce New Year SALE. 25% discount for all our extensions. Use NY24 coupon code. Hurry up the discount is valid till 7 January.


2Checkout.com, Inc. is an authorized retailer of goods and services provided by ARI Soft. 2CheckOut




Follow us on twitter



Welcome, Guest
Please Login or Register.    Lost Password?

Cerber Security detects malware coding issues
(1 viewing) (1) Guest
"ARI Fancy Lightbox" WordPress plugin
Go to bottomPage: 1
TOPIC: Cerber Security detects malware coding issues
#64311
Cerber Security detects malware coding issues 5 Years, 11 Months ago Karma: 0
I ran a Cerber Security malware scan on my website and it identified five instances of suspicious code in ARI Fancy Lightbox library files (none in any other code). All are as they came in the ari-fancy-lightbox.zip install file. Should I be concerned about this? Do any of them make it susceptible to malware?

This is what it had to say:

class-filter.php
Line 11: $filterMethod(
A variable function call. Usually is used to hinder malware detection. (VARF)

class-crypt.php
Line 39: base64_decode
May be used to obfuscate and hinder detection of malicious code. Pairing with eval function indicates malicious code.

github-checker.php
Line 273: wp_remote_get
Load external data from any web server. May be used to load malicious code from an external source.

Line 314: base64_decode
May be used to obfuscate and hinder detection of malicious code. Pairing with eval function indicates malicious code.

class-helper.php
Line 21: `PINNERJOIN`
Execute arbitrary command on the web server (BCTK)

Thanks.
The administrator has disabled public write access.
 
#64315
Re:Cerber Security detects malware coding issues 5 Years, 11 Months ago Karma: 760
Hello,

The plugin doesn't contain any malware code. It seems your tool can't analyze code for really harmful code. It only find some strings occurence and mark them as potentially dangerous code, but this code can also be absolutely valid. Our plugin are open source and you can check all warnings and make sure they are not dangerous code.

Regards,
ARI Soft
The administrator has disabled public write access.
 
#64326
Re:Cerber Security detects malware coding issues 5 Years, 11 Months ago Karma: 0
Okay, thanks. I didn't mean to imply that there is malware in the plugin, I just thought I should check.
The administrator has disabled public write access.
 
Go to topPage: 1