Dmitriy

@wfyann, thank you for responding! I do realize the flags are displayed in the live traffic view and can be filtered. One can google the IP address and find out the country of origin (potentially faster). The whole point was to be able to spot inconsistency in the access by glancing at the dashboard. I do also realize that it’s not useful to everyone, but it could be helpful. You guys are awesome with or without the feature, keep doing the amazing work!

@mountainguy2 – I respect your point as well, I’m a huge fan of simplicity!

@washiwed not necessarily, but I’d recommend deleting the theme as a precaution if you’re not using it. It’s strange that you’re getting the error for a theme that is not enabled. I’d also recommend to install WordFence and do a scan.

+1 for SSL support. It’s been asked in their support forums since early last year. It is unacceptable to not have SSL in 2017. SSL implementation is no rocket science. As far as the site I’m building is concerned, I’m looking elsewhere unless a clear ETA is given in the next few days.

@gnanakeethan @generalan it also infects a couple of core files, wp-includes/post.php in my case. if you install WordFence plugin you should be able to revert those to back to original version by running a scan and then following the instructions at the end of the scan. If you can’t just download a fresh copy of WP and overwrite your core files with it.

For those that stumbled upon this page while googling the error message, you are most likely infected with a nasty malware. That specifically applies to @oceandream’s snippet above – this code should not be in functions.php. Of course there are legit cases where mysqli_escape_string was used in an old plugin or theme, but if you are seeing this code in twentyseventeen or any other theme’s functions.php file, especially towards the top of the file, I have bad news for you — you are definitely infected.

Here’s a source code someone posted for the entire infection: https://github.com/ecrider/Black-SEO-WordPress-Malware/ in the case I personally encountered the code was slightly different 99% same as on the link. In my case it didn’t go past stage1 and I was able to remove it using WordFence (and days of subsequent close monitoring). If it proceeds to stage2 – it sounds like the attacker will have a full control of your entire installation.

Hope this info helps someone!

Thanks for the reply! And sorry I forgot to complement the plugin – it’s great! The site is https://usbtupgrades.com/ and the widget is on the home page. There is The Events Calendar Category Colors plugin and not much else. I’m running version 3.0.2.