Defender Pro shows 2 issues

  • Resolved salow

    (@salow)


    5 years, 1 month ago

    Hi there,
    thanks for this great and useful free plugin. I use it on different sites. Today I ran a security scan on one of these pages with defender pro and it shows up 2 issues/suspicious code on:
    ../Providers/Gmail/Auth.php (line 241)
    ../vendor_prefixed/phpseclib/phpseclib/phpseclib/Crypt/EC/Formats/Keys/XML.php (line 356)

    Is this okay or is there something wrong?

    Kind regards
    Sandra

Viewing 1 replies (of 1 total)
  • Plugin Author Gregor Capuder

    (@capuderg)

    5 years ago

    Hi Sandra,

    We’ve looked at the code in question and I think these are both “false positives”.

    The first one is in our plugin code and all looks good there. The variable is retrieved, compared to some static values, and then discarded.

    The second report is for phpseclib, which is a popular library that we use in our plugin: https://github.com/phpseclib/phpseclib, and I don’t see any security reports in their GH issues and our latest plugin version (v2.7.0) is using their latest version 3.0.6.

    Thank you for reporting this to us and have a nice day!

Viewing 1 replies (of 1 total)

The topic ‘Defender Pro shows 2 issues’ is closed to new replies.