I have a WordPress website stored on my domain, which is protected via the WordFence plugin. Because my Espo CRM installation / subdomain is in a subdirectory, its files get scanned at the same time as the rest.
Do I need to be concerned?
If WordFence is no good for the job, what steps are otherwise recommended to secure and automatically check security for a EspoCRM installation on a cPanel shared host?
HTML Code:
WordFence has just identified several files in my new EspoCRM installation as malicious or unsafe. Critical Problems: * File appears to be malicious or unsafe: crm.prime.net.nz/vendor/michelf/php-markdown/test/resources/php-markdown-extra.mdtest/Backtick Fenced Code Blocks.xhtml * File appears to be malicious or unsafe: crm.prime.net.nz/vendor/michelf/php-markdown/test/resources/php-markdown-extra.mdtest/Backtick Fenced Code Blocks.text * File appears to be malicious or unsafe: crm.prime.net.nz/vendor/michelf/php-markdown/test/resources/php-markdown-extra.mdtest/Tilde Fenced Code Blocks.xhtml * File appears to be malicious or unsafe: crm.prime.net.nz/vendor/michelf/php-markdown/test/resources/php-markdown-extra.mdtest/Tilde Fenced Code Blocks.text
If WordFence is no good for the job, what steps are otherwise recommended to secure and automatically check security for a EspoCRM installation on a cPanel shared host?