Hello,
I have a Malware scanner and it shows that there might be malicious code in this file:
/wp-content/plugins/wysija-newsletters/js/tinymce/tiny_mce.js
I have checked the file but I have no idea if it has malicious code or not.
I have seen some code that can resemble malicious code, like this:
match:{ID:/#((?:[wu00c0-uFFFF-]|\.)+)/,CLASS:/.((?:[wu00c0-uFFFF-]|\.)+)/,NAME:/[name=['"]*((?:[wu00c0-uFFFF-]|\.)+)['"]*]/,ATTR:/[s*((?:[wu00c0-uFFFF-]|\.)+)s*(?:(S?=)s*(?:(['"])(.*?)3|(#?(?:[wu00c0-uFFFF-]|\.)*)|)|)s*]/,TAG:/^((?:[wu00c0-uFFFF*-]|\.)+)/,CHILD:/:(only|nth|last|first)-child(?:(s*(even|odd|(?:[+-]?d+|(?:[+-]?d*)?ns*(?:[+-]s*d+)?))s*))?/,POS:/:(nth|eq|gt|lt|first|last|even|odd)(?:((d*)))?(?=[^-]|$)/,PSEUDO:/:((?:[wu00c0-uFFFF-]|\.)+)(?:((['"]?)((?:([^)]+)|[^()]*)+)2))?/},
or this:
RegExp("<(?:(?:!--([\w\W]*?)-->)|(?:!\[CDATA\[([\w\W]*?)\]\]>)|(?:!DOCTYPE([\w\W]*?)>)|(?:\?([^\s\/<>]+) ?([\w\W]*?)[?/]>)|(?:\/([^>]+)>)|(?:([A-Za-z0-9\-\:\.]+)((?:\s+[^"'>]+(?:(?:"[^"]*")|(?:'[^']*')|[^>]*))*|\/|\s+)>))","g");D=/([w:-]+)(?:s*=s*(?:(?:"((?:[^"])*)")|(?:'((?:[^'])*)')|([^>s]+)))?/g;K={script:/</script[^>]*>/gi,style:/</style[^>]*>/gi,noscript:/</noscript[^>]*>/gi
If someone from Mailpoet can get in touch with me, I can send the file for further inspection.
This way I can know for sure whether the file has malicious code.
Thanks for the help!!
Cheers!!
https://wordpress.org/plugins/wysija-newsletters/
WordPress ...
ما را در سایت WordPress دنبال می کنید
برچسب : نویسنده : استخدام کار wpss بازدید : 233 تاريخ : پنجشنبه 10 تير 1395 ساعت: 22:32