Security gap in Stack

vahe · 25 January 2017 11:23

Hi
I got a message from my provider, that after a virus check a security gap came to light. I can’t explain why this file (rw_common/plugins/stacks/Mustache/Cache/NoopCache.php; Atomicorp.PHP.Known.Malware.010217180518.876591.UNOFFICIAL) is part of my site. I don’t know how it found its way to the website code.
I’m using jw’s foundation-theme, different stacks (so bwd’s section pro, compare and map 2 from doobox, gallery 3 from instacks and others). Is there anybody who can tell me how that file came into the site and if there is a newer safer version?

thanks for your tips, your help

valeri

joeworkman · 25 January 2017 15:59

Its not Malware. That is used by Foundation to send email from the form stacks.

vahe · 25 January 2017 16:29

known malware… that’s what the providers virus checker determined. I can’t judge… So, you are of the opinion that this code isn’t unsafe?

joeworkman · 25 January 2017 17:05

Its a part of https://github.com/bobthecow/mustache.php. Its a common open source library used by tens of thousands across the web.

isaiah · 25 January 2017 17:13

I can confirm. Mustache is very common library. Perhaps the most-used templating system.

Psalm66_ · 25 January 2017 17:14

So, Joe, Bob the Cow’s mustache is to be trusted and the virus checker needs a data base correction?

This is good to know.

Topic		Replies	Views
Site not Secure Stacks	1	388	22 January 2020
Community Gallery website - malicious code? RapidWeaver Classic	33	4359	29 December 2015
Help with see helper from Jo workman General	8	892	25 August 2019
RW & addons in general, CSP3 and unsafe-inline Javascripts RapidWeaver Classic stacks , rapidweaver , addon	29	4679	3 August 2017
I purchased CodeGuard but it isn't showing up in my Chilidog hosting area RapidWeaver Classic	13	573	27 August 2020

Security gap in Stack

Related Topics