Wordfence identify as malicious | WordPress.org

@marties Thank you for bringing this to our attention. We understand your concern regarding the Wordfence alert for the file /wp-content/plugins/zero-spam/assets/disposable-email-domains.txt.

Firstly, we want to assure you that the file disposable-email-domains.txt is a legitimate file used by the Zero Spam plugin to block known spam hosts. However, false positives can sometimes occur with security plugins like Wordfence.

The good news is that Wordfence allows you to ignore scanned files if you believe they are safe. You can exclude this specific file from future scans to prevent any further alerts. If you need assistance with this process, we recommend reaching out to Wordfence support, as they can provide you with step-by-step instructions based on your specific setup. As a paid member, you have access to their support resources.

Furthermore, we appreciate your suggestion to contact Wordfence about this matter. While we don’t have direct control over how security plugins interpret our files, we will certainly consider reaching out to them to discuss any potential concerns.

For future bug reports or feature requests, we encourage you to follow the instructions provided in the sticky post on our support forum: https://projectdmc.org/support/topic/reporting-bugs-feature-requests/. This ensures that your feedback is properly tracked and addressed. Please note that our support forum isn’t actively monitored, which is why we prefer to use GitHub for issue tracking.

If you have any other questions or need further assistance, please don’t hesitate to reach out. We’re here to help.


This site will teach you how to build a WordPress website for beginners. We will cover everything from installing WordPress to adding pages, posts, and images to your site. You will learn how to customize your site with themes and plugins, as well as how to market your site online.

Buy WordPress Transfer