Wordpress LScache Plugin: Bkav warns of VEXAC76.Webshell
Last Updated on: Wed, 15 Apr 2026 00:00:02 Here are the VirusTotal scan results of the Litespeed cache plugin. What does it mean? Hi @deanveg, We do not know why that signature was triggered. From some small research, it seems like they perhaps do not like the preg_replace calls? We do use preg_replace in our code. We do not use exec nor eval, so were not sure why that was triggered. As our code is out in the open, if you or anyone finds out anything related to this signature, well be more than happy to fix it. We do believe that this is a false positive though. The link you provided also does not tell us which file triggered the warning, so we dont think that this should be anything to worry about. Hope this clears things up, Kevin The flagged file is readme.txt (here are the results). So its probably false positive. Thanks, Kevin. Thanks for the heads up, we will take a look to see if we can figure out the trigger. Cheers, Kevin
LiteCache Rush: Speed comes from using less, not from doing it faster
Reference