Hello,
I've encountered an issue where Wordfence, a security plugin for WordPress, has flagged a file within my HESK installation as potentially malicious or unsafe. The file in question is common.inc.php located at /home/umhlsxtd/public_html/soporte.mywebsite.cl/inc/.
Wordfence has identified the file as a possible backdoor with the following details:
File Name: /home/umhlsxtd/public_html/soporte.mywebsite.cl/inc/common.inc.php
File Type: Not a core, theme, or plugin file from wordpress.org.
Details: The file appears to have been installed or modified by a hacker to perform malicious activity. The matching text in this file is: $id = $id[0].$id[1].$id[2];.
Issue Type: Backdoor:PHP/StringsConcat.13658
Description: The file contains obfuscated concatenated strings which are often a sign of malicious intent.
I have not made any changes to this file myself, and I'm concerned about the security of my HESK installation. The scan result was flagged on 11/02/2023 at 09:22.
Could you please provide guidance on how to proceed with this? Is this a known issue, or do you have any recommendations for verifying the integrity of the HESK files and ensuring the security of my support ticket system?
Thank you for your assistance.
Potential Malware in common.inc.php File Detected by Wordfence
Moderator: mkoch227
Re: Potential Malware in common.inc.php File Detected by Wordfence
For a personal question, see here:
viewtopic.php?p=29397&hilit=common.inc.php#p29397
and here:
viewtopic.php?f=13&t=7072
viewtopic.php?p=29397&hilit=common.inc.php#p29397
and here:
viewtopic.php?f=13&t=7072
Re: Potential Malware in common.inc.php File Detected by Wordfence
Thanks for your quick response 