WordPress Core Checksum Verification
Note: The feature is supported in WP Toolkit version 5.6 or higher. Pay attention that it doesn’t check such files as index.php, wp-config.php, and other files that contain installation-specific data and don’t have a reference checksum.
When a malicious sofware infects WordPress sites, it can embed itself in the WordPress .php core files. As a result, it can damage your Search Engine Optimization, illegally mine cryptocurrency, or force unauthorized redirects. The core files are not meant to be modified, so you can check their MD5 checksum against the checksum of the original core files provided by WordPress.
To verify the checksum of a WordPress installation, do the following:
-
Go to WordPress.
-
In the form of the required site, click Check WordPress Integrity.
-
In the pop-up window that appears, click Verify Checksums.
-
After WP Toolkit verifies the checksum, do one of the following:
-
If WordPress core files are sucessfully verified, click Close.
-
If some core files differ, click Reinstall WordPress Core:
Note: Reinstalling the WordPress core doesn’t affect the site content. However, we recommend that you create a backup of the site’s files as a protecive measure.
After the core files are reinstalled, close the pop-up window.
-
As a result, the core files of the WordPress installation are checked and secured.
