#1476 open

False positive infection after updating Exponent

Reported by peters@slx-online.biz | March 20th, 2023 @ 03:20 PM

Hi Dave. A short while ago I updated britishtrolley.org.uk to the latest version. I've just had a note from UK2 about some infections on the site.

Running their control panel AV it's coming from cron/generateXMLFeed.php. I'm assuming a false positive and have asked them to mark as such. I don't know if this needs your attention?

PS Each time I open a ticket it says my upload quota is reached. I've aske for this to be reset a few times. I could send a screenshot but...


Comments and changes to this ticket

  • dleffler

    dleffler March 20th, 2023 @ 04:11 PM

    • State changed from “new” to “open”

    It's possible there may be some security vulnerabilities within the utilities in the /cron folder. I wouldn't think they are seen as 'infected' though. The .htaccess file prevents seeing/running them from a web site. They are meant as examples/aids to help build search site files.

    Specifically, that script generates an XML file from the products database which is then used by BING Shopping...I've never seen it used and only made minor coding updates as they presented themselves (changes needed for PHP version changes). It's not much different than the generateSiteMap.php file which creates a sitemap.xml file.

  • peters@slx-online.biz

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

New-ticket Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile ยป

Bug Tracker for Exponent CMS

Shared Ticket Bins

People watching this ticket