VaultPress reported possible backdoor on Claue Theme
security threat Details
PHP.Generic.BadPattern.7
This code pattern is often used to run a very dangerous shell programs on your server. The code in these files needs to be reviewed, and possibly cleaned.
helpers.php
/wp-content/themes/claue/core/admin/functions
function cs_encode_string( $string ) {
return rtrim( strtr( call_user_func( 'base'. '64' .'_encode', addslashes( gzcompress( serialize( $string ), 9 ) ) ), '+/', '-_' ), '=' );
}
function cs_decode_string( $string ) {
return unserialize( gzuncompress( stripslashes( call_user_func( 'base'. '64' .'_decode', rtrim( strtr( $string, '-_', '+/' ), '=' ) ) ) ) );
}
Attachments:
You must be
logged in to view attached files.