Wordfence reports suspicious malware

Thomssen Bildungsprojekte

Dear support team

Yesterday I received a message via our Wordfence plug-in that CommandUI may contain suspicious malware. The message is:

File contains suspected malware URL: wp-content/plugins/commandui/dist/plugins.10001-7KETFBVT.js
Type: File
File Type: Not a core, theme, or plugin file from wordpress.org.
Bad URL: http://popcash.net/
Details: This file contains a URL that is currently listed on Wordfence's domain blocklist. The URL is: http://popcash.net/

Do I need to worry about the message? What does the message mean? Do I need to react?
Thank you very much for your help!

Calvin Alkan

Hey Thomssen,

It's a false positive that you'll have to ignore in WordFence. Please check out this thread for more information:

https://community.commandui.com/d/53-commandui-flagged-as-malware-by-wordfence