That might be a problem coming from your settings when you created your WordPress website.
Are you using a cPanel and an application that automatically takes care of the WordPress installation for you?
For example, I use ‘Quickinstall’ (you might be using the same application, or Fantastico or something in that sense).
There’s an option in the settings:
Enable Global Automatic Upgrades:
– Unchecking this will disable Automatic Upgrades for the entire account.
My guess is that you have this activated, so as soon as it finds an update it does all the work automatically.
Related Posts:
- Background Updates Not Happening
- Why does WordPress need my private ssh key to update?
- How can I easily verify a core or plugin update has not broken anything?
- Is WP vulnerable when updating plugins or themes?
- SELinux security vs WordPress updates
- Will there be security updates for WordPress 4.9.9
- Are major WordPress updates mandatory for security?
- What is the difference between a cer, pvk, and pfx file?
- Is it possible to decrypt SHA1
- Error `sec_error_revoked_certificate` when viewed in Firefox only
- Why should I use the esc_url?
- How should I structure a WP website project using git and updating from WP dashboard?
- Where to securely store API keys and passwords in WordPress?
- Why escape if the_content isnt?
- Automating the Backup Process (30+ websites)
- Full path disclosure on rss-functions.php
- What to use instead of wp_kses() in user output
- Are the default salts secure?
- is_email() VS sanitize_email()
- WordPress updates defined vs add_filter?
- Understanding SVG vulnerabilities in WordPress related to a specific fix
- Moving wp-config.php: Can this be done after site launch?
- How to secure or disable the RSS feeds?
- How long does it take for theme / plugin automatic updates to initiate?
- Make password invalid once logged out of password-protected page
- How to get WordPress to save upload file beyond web root [closed]
- Is security a problem in WordPress?
- Moving wordpress out of the public directory
- Why won’t my site automatically apply updates after upgrade to 3.7?
- Logout via Subdomain, non-wordpress page on a different server?
- Protecting HTML5 video [closed]
- How can I tell who changed the password?
- WordPress website Security [closed]
- Do I need to use the esc_html() function on hard coded links?
- Can’t reset WordPress password
- Why users disable the WordPress update?
- Is the “lost password” feature truly a vulnerability?
- What ALL can cause “Another update is currently in progress.”? [closed]
- Is it possible to reduce the minimum character length for passwords?
- Handling email piping attachments and detecting unsupported file types
- site get login attempts after htaccess ip restriction
- Is it good security advice to install wordpress in subdirectory but link to root?
- Why was my blog post inserted lot’s of ad links by others?
- How Could I sanitize the receive data from this code
- WordPress SQL Injections through User Agent
- Should I Worry About SQL Injection When Using wp_insert_post?
- Is there a way for a user to have an alias?
- How to prevent wp-login brute force attack from thousand of different IP? [duplicate]
- What permissions should I give directories if I want to make WordPress more secure?
- Security threat with `home_url`?
- When is wp_set_password() called or how to capture a password
- WordPress 3.8.1 update error
- Something is unescaping all html entities before output to browser [closed]
- What file(s) in core control automatic background updates?
- Frequently getting attacks on admin-ajax.php, wp-cron.php, xmlrpc.php and wp-login.php
- How to get WordPress to send Password Reset Link Email instead of New Password?
- Verifying that I have fully removed a WordPress hack?
- Large Session Tokens
- How to change permissions of WordPress and/or apache on macOS securely?
- Using an Encryption class in a WordPress Plugin
- Config file with no Keys..?
- How much should I worry about these messages?
- Security concerns with external links
- I should enable automatic updates?
- Uploading .webm format on WordPress results in security guidline breach and fail
- fail2ban to prevent Brute Force Attacks on WordPress?
- .htaccess password protection bypassed
- Updating WP 3.9.5 without destroying my website
- Session Cookie security questions
- How to give the same error message when the wrong password or wrong username is used?
- Storing FTP details in wp-config.php
- should I escape a literal url added in functions.php
- Vulnerability Concern From the Plugin or From Not Updating the Plugin?
- How to allow WordPress updates to only one specific administrator?
- Moving wp-config.php outside root folder where we have multiple wordpress websites for enhanced security [duplicate]
- What do WordPress auto updates include?
- How might I sanitize an XML file before WP Import? (Does wordpress verify or clean text when importing from an XML document? )
- Secret keys in SCM
- Secure Server after configuration
- Uploading attachment (pdf) and prevent download for anonymous user
- How can I disable new plugin and theme install, but allow updates?
- After limiting the access to my wp-login.php by IP through .htaccess, all my password-protected posts stopped working. What’s the best solution now?
- Specific Page/Post Need to Stay Non SSL
- Block JSON access over the net
- Can someone do something to my website if I posted a snapped image of the header and covered my logo? (On reddit, when explaining a question)
- Update a previous version of plugin when the new plugin is built from the scratch
- The in-famous Unable to locate WordPress Content directory (wp-content) and the Direct Method
- Security: AWS (shared hosting) claims template file malicious
- How to check whether a site has been compromised without browsing into it?
- My site thinks it’s secure when it is fact not
- Is it possible to only have the admin interface bind to the local loopback?
- PHP Code Sniffer – WordPress VIP Coding Standards
- Default installation permissions for wp-config.php
- Correct setup to block file modifications from hackers
- Is my WP site being hacked?
- pre_set_site_transient_update_plugins not updating
- Move data from wp-config to another file
- Heartbleed: What is it and what are options to mitigate it?
- OpenVPN vs. IPsec – Pros and cons, what to use?
- How to test if my server is vulnerable to the ShellShock bug?