Why WordPress 6.6.1 Was Flagged For Trojan Malware via @sejournal, @martinibuster

11 months ago 187
ARTICLE AD BOX

Multiple idiosyncratic reports person surfaced informing that the latest mentation of WordPress is triggering trojan alerts and astatine slightest 1 idiosyncratic reported that a web big locked down a website due to the fact that of the file. What truly happened turned into a learning experience.

Antivirus Flags Trojan In Official WordPress 6.6.1 Download

The archetypal study was filed successful the authoritative WordPress.org assistance forums wherever a idiosyncratic reported that the autochthonal antivirus successful Windows 11 (Windows Defender) flagged the WordPress zip record they had downloaded from WordPress contained a trojan.

This is the substance of the archetypal post:

“Windows Defender shows that the latest wordpress-6.6.1zip has Trojan:Win32/Phish!MSR microorganism erstwhile one effort downloading from the authoritative wp site

it shows the aforesaid microorganism notification erstwhile updating from wrong the WordPress dashboard of my site

Is this a mendacious positive?”

They besides posted screenshots of the trojan informing that listed the presumption arsenic “Quarantine failed” and that WordPress zip record of mentation 6.6.1 “is unsafe and executes commands from an attacker.”

Screenshot Of Windows Defender Warning

Screenshot of alert to a Trojan microorganism record successful WordPress 6.6.1

Someone other affirmed that they were besides having the aforesaid issue, noting that a drawstring of codification wrong 1 of the CSS files (style codification that governs the look of a website, including colors) was the culprit that was triggering the warning.

They posted:

“I americium experiencing the aforesaid issue. It seems to hap with the record \wp-includes\css\dist\block-library\style.min.css. It appears that a circumstantial drawstring successful the CSS record is being detected arsenic a Trojan virus. I would similar to let it, but I deliberation I should hold for an authoritative effect earlier doing so. Is determination anyone who tin supply an authoritative answer?”

Unexpected “Solution”

A mendacious affirmative is mostly a effect that tests arsenic affirmative erstwhile it’s not really a affirmative for immoderate is being tested for. WordPress users soon began to fishy that the Windows Defender trojan microorganism alert was a mendacious positive.

An authoritative WordPress GitHub ticket was filed wherever the origin was identified arsenic an insecure URL (http versus https) that’s referenced from wrong the CSS benignant sheet. A URL is not commonly considered a portion of a CSS record truthful that whitethorn beryllium wherefore Windows Defender flagged this circumstantial CSS record arsenic containing a trojan.

Here’s the portion wherever things went disconnected successful an unexpected direction. Someone opened another WordPress GitHub ticket to papers a projected hole for the insecure URL, which should person been the extremity of the communicative but it ended up starring to a find astir what was truly going on.

The insecure URL that needed fixing was this one:

http://www.w3.org/2000/svg

So the idiosyncratic who opened the summons updated the record with a mentation that contained a nexus to the HTTPS mentation which should person been the extremity of the communicative but for a nuance that was overlooked.

The (‘insecure’) URL is not a nexus to a root of files (and truthful not insecure) but alternatively an identifier that defines the scope of the Scalable Vector Graphics (SVG) connection wrong XML.

So the occupation yet ended up not being astir thing incorrect with the codification successful WordPress 6.6.1 but alternatively an contented with Windows Defender that failed to decently place an “XML namespace” alternatively of mistakenly flagging it arsenic a URL linking to downloadable files.

Takeaway

The mendacious affirmative trojan record alert by Windows Defender and consequent treatment was a learning infinitesimal for galore radical (including myself!) astir a comparatively arcane spot of coding cognition regarding the XML namespace for SVG files.

Read the archetypal report:

Virus Issue :wordpress-6.6.1.zip shows a microorganism from windows defender

  1. Homepage
  2. seo
  3. Why WordPress 6.6.1 Was Flagged For Trojan Malware via @sejournal, @martinibuster

Related

The Role Of E-E-A-T In AI Narratives: Building Brand Authority For Search Success via @sejournal, @cshel

The Role Of E-E-A-T In AI Narratives: Building Brand Authori...

3 months ago 119
Win Higher-Quality Links: The PR Approach To SEO Success [Webinar] via @sejournal, @lorenbaker

Win Higher-Quality Links: The PR Approach To SEO Success [We...

3 months ago 77
How to Use ChatGPT to Get 10X Better Answers

How to Use ChatGPT to Get 10X Better Answers

3 months ago 105
RIGHT SIDEBAR TOP AD

Trending

1. Joann's closing
2. Texas Tech basketball
3. UNC basketball
4. Monster Hunter Wilds
5. Ketamine
6. Macron
7. UPMC Memorial shooting
8. Eagles
9. Hims stock
10. Joel Embiid

Popular

What Is a Landing Page? Examples + Best Practices

What Is a Landing Page? Examples + Best Practices

1 year ago 2442
TikTok Trends 2025: The Most Important Trends To Watch via @sejournal, @theshelleywalsh

TikTok Trends 2025: The Most Important Trends To Watch via @...

6 months ago 1680
The Ultimate 2021 Guide to Content Distribution (+ Infographic)

The Ultimate 2021 Guide to Content Distribution (+ Infograph...

3 years ago 1362
What Is a Sitemap? Website Sitemaps Explained

What Is a Sitemap? Website Sitemaps Explained

11 months ago 1126
Top 5 Local Rank Tracker Tools (Tested & Reviewed)

Top 5 Local Rank Tracker Tools (Tested & Reviewed)

1 year ago 1105
RIGHT SIDEBAR BOTTOM AD
English (US) English (US)
About Us · Contact Us · Terms & Conditions ·

© 香港SEO中心博客 2025. All rights are reserved