Tell us what you are trying to do?
- Find out what the files "wp-admin/47f91a457e52132678f8d904b05c2218-100x100_map.shtml" are and if they're related to your plugin. If so, what are they for and can I remove them?
Is there any documentation that you are following?
- Not from you, no. But there's over 800 different files (that I assume are from you, as I have nothing else that uses maps on my website except Toolset Maps) picked up by Wordfence security.
Is there a similar example that we can see?
- There's 800-ish different examples, yes.
Those are not generated by Toolset, and I would take the security warnings seriously.
Toolset, nor any other legitimate plugin, would add files to the wp-admin folder of your installation like that.
You could try opening and editing some of the files in a code editor to see what they contain, but you may need help from your host to understand what risk they represent.
Discuss with your host, but you almost certainly should delete them.
So just to be clear; there's no possibility that they were saved there by accident? Perhaps a bug or something within Toolset Maps?
Here is what Wordfence support said:
"Nearly all of the problems the Wordfence scanner is reporting are shtml files that are appearing in the web root and wp-admin directories of the site. They each contain some "map" html that refers to a picture file in subdirectories beneath the wp-content/uploads directory. They look like the product of a plugin that is attempting to expedite their size and speed of access. They have timestamps starting on the 17th Aug 2021 through to May 7th 2022. Would you have an idea of which plugin(s) activity may have created these in your site?"
17 August 2021 was when my website went live and customers could use the Toolset Maps plugin (on the front-end) but I have no idea what happened on May 7th. Was there a plugin update around that time?
For reference, Toolset Maps has been set to cache since going live, and these files appear to be something that "expedites their size and speed of access", which sounds a lot like cache-ing.
So:
- Toolset Maps is the only map-related plugin I have on my website.
- Toolset Maps also has a cache-ing function to improve with speed of access,
- The problematic files seem to be some sort of saved picture files to improve the speed of access to maps.
Are you 100% sure that there's not a single possibility that it could've been an error within Toolset Maps, or a bug, or an oversight, or whatever, with Toolset Maps between those dates?
I've never seen any such files on any maps site I've worked on and I don't believe they would be generated by the maps plugin in isolation, though I don't rule out that some other plugin (e.g. a caching plugin) could in combination have generated the files.
Difficult to say without even seeing what the files contain.
The caching from the maps plugin you talk about isn't related, that is about caching coordinates for addresses and storing them in a custom database table.
If the files stopped being created on May 7th (no changes our end on that date) and are no longer being created, then I suggest you simply delete them.
If you don't have ready access to FTP you can use one of a number of File Manager plugins and delete them from within your WordPress dashboard.
