Jetpack flagging file in AddonsLoader.php

cbpayne

I get this message when Jetpack scans my site:

"File contains malicious code: AddonsLoader.php
Threat found (php_obfuscator_goto_001)
Threat found in file: public_html/wp-content/plugins/atum-stock-manager-for-woocommerce/classes/Addons/AddonsLoader.php
We recommend you to remove this file immediately."

I did delete it, but then got critical error on site, so restored it. Jetback re-scan still flags this.

Any advice?

Salva

Hi cbpayne

That is a false positive. It's right that the file is obfuscated due to security reasons, but it is not dangerous at all, and it's 100% secure to have it there.
If you delete it, ATUM won't work, and it can cause errors on your site.
So I strongly recommend leaving it there.
I don't know if you can exclude that file from Jetpack scans. You can ask the Jetpack authors.

Best Regards,
Salva.

cbpayne

Thanks Salva. I will follow up with Jetpack.

Salva

cbpayne You're welcome 😉