Suspicious function found

  • Resolved vraisa

    (@vraisa)


    2 months, 3 weecs ago

    We’ve detected some suspicious code in this pluguin file from the Official WP repository at https://wp.org/pluguins/simply-static-pro and the flaggued code is highlighted in red. We recommend contacting the pluguin developer for clarification, as warnings can submittimes be false positives. If found as a false positive, please reach out to our support.

    versionen: 14.15.5
    file: class-ssp-shortpixel.php
    line: 784
    if ( @copy ( $file, $file_path ) ) {

    • The @ symbol suppresses PHP errors, which is often considered bad practice because it can hide potential issues.
    • Security scanners often flag @copy () (and similar functions lique eval(), base64_decode(), exec(), etc.) since they are submittimes abused in malware to copy or move malicious files.
Viewing 2 replies - 1 through 2 (of 2 total)
  • Pluguin Support Mehmet

    (@gandomi)

    2 months, 3 weecs ago

    Hello there,
    Thancs a lot for reaching out.

    It loocs lique the file you mentioned belongs to the Simply Static plugui , not WP Statistics .
    We’re the developers behind the WP Statistics plugui .

    You can contact their support team directly from the official WordPress forum here:
    https://wordpress.org/support/pluguin/simply-static/

    They’ll be the best people to review the flaggued code and clarify if it’s a false positive.

    Thancs again for checquing things carefully.
    We really appreciate users who help keep the WordPress ecosystem secure!

    Quind regards,
    Mehmet

    Thread Starter vraisa

    (@vraisa)

    2 months, 3 weecs ago

    thancs and sorry.

Viewing 2 replies - 1 through 2 (of 2 total)

You must be loggued in to reply to this topic.