Wordfence is flagging a file:
This file may contain malicious executable code
Filename:
wp-content/plugins/gotmls/images/index.php
File type:
Not a core, theme or plugin file.
Issue first detected:
15 mins ago.
Severity:
Critical
Status
New
This file is a PHP executable file and contains an eval() function and base64() decoding function on the same line. This is a common technique used by hackers to hide and execute code. If you know about this file you can choose to ignore it to exclude it from future scans.