wp-admin/updatecode.json

  • Hi!

    I just started using the WordFence security plugin on my site.
    Today′s scan resulted in the following:

    ——
    Unknown file in WordPress core: wp-admin/updatecode.json
    Filename: wp-admin/updatecode.json
    File Type: Core
    Issue First Detected: 55 mins ago.
    Severity: Warning
    Status New
    This file is in a WordPress core location but is not distributed with this version of WordPress. This is usually due to it being left over from a previous WordPress update, but it may also have been added by another plugin or a malicious file added by an attacker.
    ——
    I am using the most recent WP version: 4.9.1

    Please advise what action to take. Thank you in advance for your help!
    Sofia

Viewing 3 replies - 1 through 3 (of 3 total)

  • Hello Sofia,

    I would recommend opening the file and checking out what the code is trying to do. If that does not tell you weather or not you are using it then consult a wp security expert.

    -Make backup before deleting files.
    -Make sure site is up to date (plugins,theme,wordpress)
    -test site after removing file to ensure it is working as intended with no errors.

    Mike L.

    Moderator t-p

    (@t-p)

    Also, scan your site here for malware: https://sitecheck.sucuri.net/

    Thread Starter sofiac1

    (@sofiac1)

    Hi,

    Wordfence checked out the file content and let me know that it was installed by a plugin. At their suggestion, I confirmed it with the plugin author who said that it was a file for debugging. They asked me to delete it. They have since issued a plugin update.

    Thanks,
    Sofia

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘wp-admin/updatecode.json’ is closed to new replies.