Make WordPress Core

Opened 5 years ago

Closed 5 years ago

#47462 closed defect (bug) (invalid)

Someone keeps gaining access to my site as an admin

Reported by: madecker12's profile madecker12 Owned by:
Milestone: Priority: normal
Severity: normal Version: 5.2.1
Component: Security Keywords:
Focuses: Cc:


I have a potential hacker (dreamsbadtoyou2@…) that has somehow added themselves as an admin to my website. I do not have the box checked under general settings that even allows someone to request permission, but they were still able to set themselves up as an admin. I took them off, checked the box and set the default role to blocked, but they tried again and were successful in making themselves an admin. This is a HUGE problem that I haven't encountered before and it needs to be addressed immediately.

Change History (1)

#1 @SergeyBiryukov
5 years ago

  • Milestone Awaiting Review deleted
  • Resolution set to invalid
  • Severity changed from critical to normal
  • Status changed from new to closed

Hello @madecker12, welcome to WordPress Trac!

I'm sorry that your site seems to be hacked. Unfortunately we can't help you with your hacked site here. Please follow the steps mentioned on or try our support forums at

In case you have found a a security vulnerability in WordPress please read

Note: See TracTickets for help on using tickets.