Wordfence reporting suspicious files

  • Wordfence is reporting several suspicious files: “is in a WordPress core location but is not distributed with this version of WordPress”
    Example:
    wp-includes/js/tinymce/skins/lightgray/fonts/tinymce-small.json
    All are located in the wp-includes/js/tinymce/ folder.
    Can they be ignored or are they real trouble?
    Thanks.

Viewing 3 replies - 1 through 3 (of 3 total)

  • Compare versions of the file with Wordfence. Updates to files don’t always register with WF. Should be fairly obvious if the change is ok to ignore.

    Plugin Author Andrew Ozz

    (@azaozz)

    These seem to be all files that were deleted in the latest version. WordPress tries to delete them when updating but some time that may fail on some hosts. Best would be if you delete them with something like SFTP.

    Thread Starter weblink

    (@weblink)

    Thank you, should I de-install the plugin and then re-install to fix the problem?

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Wordfence reporting suspicious files’ is closed to new replies.