Started getting a notification in the Wordfence scan that an Admin user with the name ‘admin’ was created outside of WordPress. Obviously could be a concern, so digging in…
The odd thing is, we already have a dummy ‘admin’ user account with subscriber level access, and WordFence is set to automatically block users that try to log in using ‘admin’.
Everything’s kept up to date, no apparent issues, nothing in the logs with unwanted logins, security scans are all clean.
Even checking the database directly, in both the Users table and the administrator capabilities, the only Admin users in the database are the actual Admins that should be there (and those same users are listed correctly in the WordPress admin as well.
Any thoughts why WF would be triggering?
- The topic ‘“Admin” Created Outside of WordPress’ is closed to new replies.