Support » Plugin: Sucuri Security - Auditing, Malware Scanner and Security Hardening » WP 4.7.1 wp-includes/functions.php Mod Alert

  • Resolved windmilldesign


    Sucuri is sending out File Modification alerts on all of our installs after updating to 4.7.1.
    Is anyone else seeing this? Is this a false positive?

Viewing 6 replies - 1 through 6 (of 6 total)
  • Plugin Author Daniel Cid


    That’s expected. When you update WordPress it will change some files, so the integrity monitor will let you know of what was modified.


    Shouldn’t the plugin check this file against the repository and *not* mark it as “modified”? I don’t get a list (or persistent alerts) of modified files when I perform WP updates normally.

    I am having the same issue. Sucuri is only alerting on that one file, not every file that was updated. I compared the file on our live sites to the WP repo and found the live version of wp-includes/functions.php doesn’t match the repo.

    Line 2367
    Live: if ( ! is_callable( ‘exif_imagetype’ ) ) {
    4.7.1 repo: if ( is_callable( ‘exif_imagetype’ ) ) {

    So this doesn’t seem to be a Sucuri issue….

    Our host is WPEngine and all of our sites were updated automatically by their system. Maybe they modified this intentionally. I contacted WPE support but they weren’t familiar with this.

    FYI – I re-installed 4.7.1 on one of our sites and that caused the alert to disappear. I confirmed wp-includes/functions.php matches the WP repo now.

    FYI I’m also at WPEngine and was seeing this same behavior. Maybe it’s isolated to their platform?

    How did you “re-install” did you simply perform a core update?

    I went to Dashboard > Updates and clicked the “Re-install Now” button. I did this on 6 installs and haven’t noticed any problems.

Viewing 6 replies - 1 through 6 (of 6 total)
  • The topic ‘WP 4.7.1 wp-includes/functions.php Mod Alert’ is closed to new replies.