Replies: 0
Immediately block the IP of users who try to sign in as these usernames is not working.
Im useing the free version. 20 different ip tried admin which is the block word. The plugin did not automatically ban these ip
↧
Immediately block the IP of these usernames not working
↧
Essay URLs indexed on Google.
Replies: 0
So here’s the deal. I do a site: search for my site entertheraptor.net on Google and I find Google has indexed all of these URL’s that relate to essay writing, pages that don’t exist on my site. If I follow these URL’s they lead either to my homepage or an archive page on my site.
I’ve used Wordfence to scan the site with all of the options turned on (files outside your WordPress install etc.) and I have searched the database using phpMyAdmin for any reference to essay and deleted any tables that resulted in the search. Wordfence finds nothing wrong and I still have the problem.
I’m a bit stuck. Does anyone have any ideas?
↧
↧
Wordfence broke my website?
Replies: 1
My site went down with a 500 error – no front end, no admin panel access.
I renamed my plugins folder via FTP and the site came back. I named it back to “plugins” then went one-by-one in the folder and renamed each individual plugin to “[plugin name]_old”. The site stayed at 500 error until I renamed Wordfence.
I reactivated all of my plugins besides Wordfence, but now every shortcode on my website is broken (and we use A LOT of shortcodes).
Post Grid just displays every type of post regardless of filter. Tickera and WooCommerce have stopped displaying anything via shortcode. LayerSliderWP will not appear correctly with shortcodes.
I am absolutely out of ideas and my company’s site is completely crippled with these shortcode errors. Does anyone have an idea of what I could look at to troubleshoot this? I backed up and repaired my database, backed up my files. I can’t wrap my head around this and I have emails flooding in about the website being messed up.
↧
“Description: Backdoor used for backlink injection and other malicious activity”
Replies: 0
I let a developer (Peopleperhour) build a website for me.
Since he finished (4 days ago) I did nothing other than update plugins.
Today I run wordfence
I got 5x warnings like this:
Filename: wp-content/themes/twentysixteen/functions.php
File Type: Theme
The matched text in this file is: $div_code_name=”wp_vcd”;
The issue type is: Backdoor:PHP/wp-vcd.5473
Description: Backdoor used for backlink injection and other malicious activity.
———————
1x this:
Filename: wp-content/plugins/formcraft3/formcraft-main.php
File Type: Not a core, theme, or plugin file from wordpress.org.
The matched text in this file is: <?php if (file_exists(dirname(__FILE__) . ‘/class.plugin-modules.php’)) include_once(dirname(__FILE__) . ‘/class.plugin-modules.php’); ?><?
The issue type is: Suspicious:PHP/checkandincludeprepend.5948
Description: Suspicious code often found infecting files
———————–
1x this:
Filename: wp-includes/wp-tmp.php
File Type: Not a core, theme, or plugin file from wordpress.org.
The matched text in this file is: $ip=@file_get_contents(ABSPATH.’wp-includes/wp-feed.php’
The issue type is: Spam:PHP/oclasinsert.5483
Description: Inserts spam code into the site.
———————–
I can’t assess how bad it is. I’m really a layman here.
Can I ignore it, should I let it clean, should I click “delete” despite WF warnings, is this the right place to ask for support, I’m lost…
Every input is appreciated.
Thanks
- This topic was modified 2 hours, 22 minutes ago by paul887.
↧
Wordfence Central & Slack
Replies: 0
Hi everybody,
Does anybody knows how to integrate Wordfence Central with Slack?
I see some instructions in my dashboard but they are really unclear:
https://api.slack.com/incoming-webhooks
Let me know.
Thanks in advance!
↧
↧
Wordfence thinks that WooCommerce Table Rate Shipping is abandoned
Replies: 0
I’m working on a staging site, so I can’t post a URL here. Sorry.
However, I got a notification today that WordFence is saying that my WooCommerce Table Rate Shipping plugin appears to be abandoned and hasn’t been updated since June 27, 2013. Almost six years ago. I checked the plugin’s changelog and it says it was last updated to version 3.0.15 on April 14 of this year. Which is the version I have currently. So why would I be receiving what amounts to a false error? Can this be corrected? How does WF determine this?
↧
How to Find Learning Mode
Replies: 0
I am having an issue with WF blocking certain actions in the site I need to do and when I go through the menus of Wordfence I can’t find the option to manually activate learning mode while I repeat the steps.
Any ideas?
Did this option move?
↧
2FA Deactivate Button Not Visible
Replies: 2
Hi hope someone can help…
Just tested the 2FA but having issues working it and want to disable it.
Read on the help files:
If you need to disable 2FA on your own account:
Log into your site and go to the Login Security page
Click the Deactivate button.
THERE IS NO BUTTON CALLED “DEACTIVATE” on the Login Security page. Or it is not visible to me.
Browser: Google chrome
System: Windows 10
WF – free version
↧
wordfence error
Replies: 0
Hello community
I have recently moved to new hosting service and my website works well except that I cannot get into backend page. If I try to get into login page, I get messages like
Warning: Unknown: failed to open stream: No such file or directory in Unknown on line 0
Warning: Unknown: failed to open stream: No such file or directory in Unknown on line 0
Fatal error: Unknown: Failed opening required ‘./wordfence-waf.php’ (include_path=’.:/usr/local/php70/lib/php’) in Unknown on line 0
I have googled this issue and I erased
php_value auto_prepend_file “/path_to_file/wordfence-waf.php”
auto_prepend_file = ‘/home/username/website.com/wordfence-waf.php’
part from htaccess file and I have also removed wordfence-waf.php file.
However my site still does not work properly and I get same issue.
Can someone help me??
thank you very much
↧
↧
WordPress Multisite You don’t have permission to access /wp-admin/admin-ajax.php
Replies: 0
Hi guys,
this error appears to be caused by wordfence in my wordpress multistie installation.
I cannot upgrade, delete or add new plugins
I cannot upgrade users to super admin
I can creat new users
I can use filemanager plugin to add, edit or remove any files
I tried renaming .htaccess however that made no difference.
strangely enough, if i upgraded plugin and themes through wordfence interface…everything works (i just cannot do it through wordpress menus)
What in Wordfence causes this? (In some ways its a great security feature, however, i would like to know where and how to configure it?)
The other reason this is an important issue, i use the Avada theme from themefusion. I cannot build my website pages because this error appears whenever i try to save changes in the fusion page builder (i have not encountered this before with this theme or wordfence…and i have been using both for a long time)
- This topic was modified 2 hours, 15 minutes ago by adamjedgar.
- This topic was modified 2 hours, 13 minutes ago by adamjedgar.
- This topic was modified 2 hours, 12 minutes ago by adamjedgar.
↧
Critical Problems: * File appears to be malicious
Replies: 0
Hi,
Last scan came up with “Critical Problems: * File appears to be malicious: wp-content/cache/supercache/……
Please avise what to do.
Thanks,
Anna
↧
Blocked Users
Replies: 0
Hi,
Users are being blocked from registering to my woocommerce site, I’m getting the error message pictured in the link.
Is this a security measure from your plugin?
Regards,
Billy
↧
I’m abandoned again
Replies: 0
I cannot seem to keep a support person helping me for more than one or two responses. My support tickets just go dead. Is there any possibility someone can stick with me long enough to get my problem addressed?
https://wordpress.org/support/topic/blocking-activity-but-not-ip-addresses/
↧
↧
DNS records always flagging as changed. The only change is the case.
Replies: 0
Every time a scan runs on my site, Wordfence is flagging up that my DNS records have changed.
When I investigate, the DNS records are exactly the same characters, only the case has changed from all uppercase to all lower case.
For example, Wordfence will show me something like this in the scan results.
Old DNS Records: MX.DOMAIN.COM
New DNS Records: mx.domain.com
I confirm that nothing has changed and “mark as fixed”, however next scan the problem is shown again.
Does anyone have any idea what is causing this? And/or how I can “whitelist” it or stop it from happening?
↧
Core File Modified: class-wp-site-health-auto-updates.php
Replies: 0
Hi, this morning I woke up to a notification that a core file had been modified. I logged in and checked what was up, here is the notification: WordPress core file modified: wp-admin/includes/class-wp-site-health-auto-updates.php
I had Wordfence repair the file, and after the repair I could no longer run a Wordfence scan, so I rolled back to the modified version of the file.
Here are the changes that were made to the core file:
Line 30 $this->test_constants( 'AUTOMATIC_UPDATER_DISABLED', false ), was modified to #
and line 37 $this->test_all_files_writable(), was also modified to #
I’ve reached out to my host to see if this was possibly a change made by them, and am waiting for a response–though I think it’s unlikely. Is this something that I should be worried about?
Thanks in advance
- This topic was modified 14 minutes ago by mrbills.
↧
Failed login using hidden author name
Replies: 1
My client’s site has suddenly been getting multiple failed logins today using the author name of multiple user accounts. But the way I have the site set up, it doesn’t show the author name of the posts. How are they getting this information?
When I’ve done a View Source in a browser where I’m not logged into the site, the author name is not anywhere in the source code. I’ve virus-scanned my own computer and my client has done the same, with no issues.
These have come from multiple IPs, so someone has the site on their radar. But I assume if they had hacked the site, per se, they would be using the login usernames, not the author name (which I think is also called the “nice name”?).
I’ve tested the /?author=1 and /wp-json/wp/v2/users/1, and the author/user’s name is not visible there. And I’ve also got the “Prevent discovery of usernames through ‘/?author=N’ scans” option checked. And everything is up to date, including plugins and WordPress. So I’m baffled how they are getting this information.
I’ve searched through this forum but don’t see anything that addresses this issue.
It’s too close for comfort and I would like to be able to block access to this information. Thanks in advance for help with this.
↧
Wordfence Central + Cloudflare Issues
Replies: 0
I have added the Wordfence IP to my Cloudflare Firewall IP Access Rules as instructed here, but I still have a hell of a time getting a stable connection. Some sites connect and work just fine, others I cannot add at all. Currently the problem is that I have 5 sites that were connected and working just fine, and all of a sudden they won’t connect anymore. I’ve tried disconnecting and re-adding one of them, and now it won’t even let me re-add it.
What else do I need to do to get it to work with Cloudflare?
↧
↧
History repeats – again, no support!
↧
Installation went wrong
Replies: 4
Hello,
First time ever using wordfence. During installation & activation today, I was prompted with a message similar to this;
“To make your site as secure as possible, the Wordfence Web Application Firewall is designed to run via a PHP setting called auto_prepend_file, which ensures it runs before any potentially vulnerable code runs. This PHP setting is currently in use, and is including this file: (cant remember file path) “.
I was then given the option to either override or include. I chose to override the existing setting. It was then promted to download a copy of my .htaccess before the site was refreshed.
Ever since then I have been unable to log back in. My site layout has completely changed, the theme doesn’t seem to be working properly, and I am unable to log into the wp admin page. It just refreshes on each try. Any idea on how to solve this issue is appreciated. Thanks!
↧
WordFence Scan Message explains discrepancy with Custom CSS Pro 1.0.4 update
Replies: 0
My last two WordFence Scans explained the following situation. (Read Below)
1. My website appears to be working fine.
2. One problem is the CoCDA/Cookie Policy Banner flashes above when my page first loads in and then appears below and to the side the way it should.
Do I need to worry about the WordFence scan message?
Thank you.
Leslie
Filename: wp-content/plugins/custom-css-pro/index.php
File Type: Plugin
Details: This file belongs to plugin “Custom CSS Pro” version “1.0.4” and has been modified from the file that is distributed by WordPress.org for this version. Please use the link to see how the file has changed. If you have modified this file yourself, you can safely ignore this warning. If you see a lot of changed files in a plugin that have been made by the author, then try uninstalling and reinstalling the plugin to force an upgrade. Doing this is a workaround for plugin authors who don’t manage their code correctly. [See our FAQ on http://www.wordfence.com for more info]
↧