core files changed

  • Resolved gfour

    (@gfour)


    4 years ago

    Hello,
    I recently got critical errors (high severity issues) by Wordfence about some WP core files changing. These files are

    • wp-login.php,
    • wp-signup.php,
    • wp-comments-post.php,
    • wp-load,
    • wp-activate.php and
    • license.txt.

    That what I see, when I go trough Details->View Difference for any of these files, seems to me not to be malicious changes but surely wasn’t by me.
    I maintain two wordpress websites (dev and production) on different VPS with WP 5.6.8 and Woo 4.7. These critical errors appeared on the developer server only. May I have an advice on this matter, please?
    Thank you in advance.

Viewing 1 replies (of 1 total)
  • Plugin Support wfpeter

    (@wfpeter)

    4 years ago

    Hi @gfour,

    Are you running alpha/beta/RC versions of WordPress still in development on your development server? Wordfence will be comparing the files to final releases so could pick up legitimate repository changes on unreleased WordPress versions for this reason.

    Thanks,

    Peter.

Viewing 1 replies (of 1 total)

The topic ‘core files changed’ is closed to new replies.

  • 1 reply
  • 2 participants
  • Last reply from: wfpeter
  • Last activity: 4 years ago
  • Status: resolved