Make WordPress Core

Opened 5 years ago

Closed 5 years ago

Last modified 5 years ago

#47731 closed defect (bug) (invalid)

twentynineteen malicious code functions.php from update

Reported by: acteventsplanner's profile acteventsplanner Owned by:
Milestone: Priority: normal
Severity: normal Version: 5.2.2
Component: Bundled Theme Keywords:
Focuses: Cc:


I updated wordpress to the latest yesterday two different websites and twentynineteen has malicious code

This will send you an urgent message about your 1 & 1 IONOS contract.

A few minutes ago, our anti-virus scanner detected that a malicious file was being loaded on your webspace.

The file can be found on your webspace under the following path:

~ / Efc_spain / wp-content / themes / twentynineteen / functions.php

To protect you from dangerous hacker attacks, our anti-virus scanner checks every file on your webspace that has been modified or newly filed. If signs of an attack are detected, the execution of the file is prevented to ward off dangerous consequences. For this purpose, the file permissions are changed automatically, so that a call to the file is no longer possible.

Our detection will continue after this email to disable more malicious code...

Change History (2)

#1 @Presskopp
5 years ago

  • Resolution set to invalid
  • Status changed from new to closed


this is probably a false positive. But in any case please don't report security issues here on trac, this is for development only. See

#2 @SergeyBiryukov
5 years ago

  • Component changed from Themes to Bundled Theme
  • Milestone Awaiting Review deleted
  • Severity changed from blocker to normal
Note: See TracTickets for help on using tickets.