Make WordPress Core

Opened 9 years ago

Closed 9 years ago

Last modified 9 years ago

#18498 closed defect (bug) (invalid)


Reported by: danielpataki Owned by:
Milestone: Priority: normal
Severity: critical Version:
Component: General Keywords:
Focuses: Cc:


Hi Everyone,

I am pretty sure my coding is not at fault, but whenever I try to use admin-ajax.php I get a 500 error, but interestingly enough, only when I use an action. If the action is omitted, the script returns -1 as expected.

I tried to narrow down the problem down by following the wp load process and echoing something and exiting the script right after. My goal was to find the point where it stops echoing and gives the 500 error. This point is line 98 in the current dev version of the includes/default-filters.php file (REV 18583)


If I uncomment this line, the script works as intended. I am not familiar with this in Wordpress, for reference I have attached the content of the wp_optimize option_value.

I am fairly sure this might be a bug, but let me know if you have any other ideas, or need some further input. I apologize for assigning it a critical severity, my logic behind this is that if this really is a bug, it will break all AJAX functionality at least, which is probably a big deal.

Thank You!

Attachments (1)

wp-optimize.rtf (54.6 KB) - added by danielpataki 9 years ago.

Download all attachments as: .zip

Change History (3)

#1 @dd32
9 years ago

  • Milestone Awaiting Review deleted
  • Resolution set to invalid
  • Status changed from new to closed

Unfortunately, I'm going to have to tell you that your WordPress install is infected with a backdoor. WordPress does not include the code you've refered to above in a stock install: http://core.trac.wordpress.org/browser/trunk/wp-includes/default-filters.php?rev=18583#L98

Some items you might find useful: Codex: FAQ, My site was hacked and Plugin: Exploit Scanner should help find any other items which are also infected - It may not detect that particular exploit however.

The first step is to delete that option from your database and take it from there.

Since Trac is for reporting bugs, I'm closing this as invalid, however you'll definately find more help in the support forums.

Last edited 9 years ago by dd32 (previous) (diff)

#2 @danielpataki
9 years ago

Hi dd32,

Thanks for your awesome quick response, I will check the repository manually anytime somethings is fishy like this.

Note: See TracTickets for help on using tickets.